An Insufficient Algorithmic Complexity combined with an Allocation of Resources Without Limits or Throttling vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series and MX Series with SPC3 allows an unauthenticated network attacker to cause latency in transit packet processing and even packet loss. If transit traffic includes a significant percentage (> 5%) of fragmented packets which need to be reassembled, high latency or packet drops might be observed. This issue affects Juniper Networks Junos OS on SRX Series, MX Series with SPC3: All versions prior to 18.2R3; 18.3 versions prior to 18.3R3; 18.4 versions prior to 18.4R2-S9, 18.4R3; 19.1 versions prior to 19.1R2; 19.2 versions prior to 19.2R1-S1, 19.2R2.
References
Link | Resource |
---|---|
https://kb.juniper.net/JSA11261 | Vendor Advisory |
https://kb.juniper.net/JSA11261 | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
History
21 Nov 2024, 06:46
Type | Values Removed | Values Added |
---|---|---|
References | () https://kb.juniper.net/JSA11261 - Vendor Advisory |
Information
Published : 2022-01-19 01:15
Updated : 2024-11-21 06:46
NVD link : CVE-2022-22153
Mitre link : CVE-2022-22153
CVE.ORG link : CVE-2022-22153
JSON object : View
Products Affected
juniper
- mx40
- srx1400
- srx240h2
- srx300
- srx4000
- srx4600
- srx3600
- mx960
- srx210
- mx5
- mx10
- junos
- mx104
- srx550_hm
- srx340
- mx204
- srx550
- mx150
- srx4200
- srx3400
- srx550m
- mx10008
- srx5000
- mx80
- mx2010
- srx5800
- srx345
- srx1500
- srx220
- mx10016
- srx650
- srx5600
- mx2008
- mx10003
- srx5400
- mx480
- srx100
- srx110
- srx320
- srx240
- srx380
- mx10000
- mx2020
- mx240
- srx4100