Produits Juniper

Refer: 

tunCERT/Vuln.2022-334

Version: 

1.0

Date version: 

2022-07-14

Score cvss: 

7.80

Classification: 

  • Critique

Impact: 

  • Déni de service
  • Perte de confidentialité
  • Perte d'intégrité
  • Prise de contrôle

Plateforme: 

  • Indépendant de la Plate-forme

Conséquence: 

Déni de service

Logiciels impactés (s) :

Juniper NETWORKS

  • Junos OS Evolved 21.3, 21.4 21.2, 21.3, 21.4
  • Junos OS 15.1X49 à 19.3, 19.4, 20.1, 20.2, 20.3, 20.4, 21.1, 21.2, 21.3, 21.4

Description: 

Des vulnérabilités ont été découvertes dans les systèmes Juniper Junos OS. L'exploitation de ces failles pourrait permettre à un attaquant distant de provoquer un déni de service.

Solution: 

SE RÉFÉREZ À LA PARTIE «SOLUTION» POUR METTRE À JOUR VOS SYSTÈMES JUNOS OS
Téléchargement des mises à jour

Lien: 

https://support.juniper.net/support/downloads/

Identificants du problème: 

CVE-2020-1968

CVE-2020-1971

CVE-2021-3712

CVE-2021-23839

CVE-2021-23840

CVE-2021-23841

CVE-2022-22221

CVE-2022-22205

CVE-2022-22207

CVE-2022-22212

CVE-2022-22209

CVE-2022-22206

CVE-2021-36690

CVE-2020-11655

CVE-2020-9327

CVE-2022-22214

CVE-2022-22202

CVE-2022-22215

CVE-2022-22217

CVE-2022-22210

CVE-2022-22203

Documentation additionnelle: 

Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-OpenSSL-security-fixes
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-SRX-and-EX-Series-Local-privilege-escalation-flaw-in-download-functionality-CVE-2022-22221
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-SRX-Series-An-FPC-memory-leak-can-occur-in-an-APBR-scenario-CVE-2022-22205
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-MX-Series-with-MPC11-In-a-GNF-node-slicing-scenario-gathering-AF-interface-statistics-can-lead-to-a-kernel-crash-CVE-2022-22207
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-Evolved-A-high-rate-of-specific-hostbound-traffic-will-cause-unexpected-hostbound-traffic-delays-or-drops-CVE-2022-22212
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-RIB-and-PFEs-can-get-out-of-sync-due-to-a-memory-leak-caused-by-interface-flaps-or-route-churn-CVE-2022-22209
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-SRX-series-The-PFE-will-crash-when-specific-traffic-is-scanned-by-Enhanced-Web-Filtering-safe-search-CVE-2022-22206
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Multiple-vulnerabilities-in-SQLite-resolved
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-In-an-MPLS-scenario-upon-receipt-of-a-specific-IPv6-packet-an-FPC-will-crash-CVE-2022-22214
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-PTX-Series-FPCs-may-restart-unexpectedly-upon-receipt-of-specific-MPLS-packets-with-certain-multi-unit-interface-configurations-CVE-2022-22202
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-var-run-pid-env-files-are-potentially-not-deleted-during-termination-of-a-gRPC-connection-causing-inode-exhaustion-CVE-2022-22215
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-QFX10k-Series-Denial-of-Service-DoS-upon-receipt-of-crafted-MLD-packets-on-multi-homing-ESI-in-VXLAN-CVE-2022-22217
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-QFX5000-Series-and-MX-Series-An-l2alm-crash-leading-to-an-FPC-crash-can-be-observed-in-VxLAN-scenario-CVE-2022-22210
Bulletin de sécurité Juniper 2022-07
https://supportportal.juniper.net/s/article/2022-07-Security-Bulletin-Junos-OS-EX4600-Series-and-QFX5000-Series-Receipt-of-specific-traffic-will-lead-to-an-fxpc-process-crash-followed-by-an-FPC-reboot-CVE-2022-22203

Date de publication: 

2022-07-14

Référence: 

334