Produits Juniper

Refer:

tunCERT/Vuln.2023-021

Version:

1.0

Date version:

2023-01-13

Score cvss:

7.50

Classification:

Critique

Impact:

Déni de service

Plateforme:

Juniper OS

Conséquence:

Déni de service

Logiciels impactés (s) :

Juniper

Junos OS : toutes les versions

Junos OS 12.3, 15.1, 17.3, 18.4, 19.1, 19.2, 19.3, 19.4, 20.1, 20.2, 20.3, 20.4, 21.1, 21.2, 21.3, 21.4, 22.1, 22.2, 22.3

Junos OS Evolved 21.3-EVO, 21.4-EVO, 22.1-EVO, 22.2-EVO

Description:

Des vulnérabilités ont été découvertes dans les systèmes Juniper Junos OS. L'exploitation de ces failles pourrait permettre à un attaquant distant de provoquer un déni de service.

Solution:

SE RÉFÉREZ À LA PARTIE «SOLUTION» POUR METTRE À JOUR VOS SYSTÈMES JUNOS OS

Téléchargement des mises à jour

Lien:

https://support.juniper.net/support/downloads/

Identificants du problème:

CVE-2023-22396

CVE-2023-22410

CVE-2022-1473

CVE-2023-22404

CVE-2023-22417

CVE-2023-22413

CVE-2023-22411

CVE-2023-22391

CVE-2023-22393

CVE-2023-22394

CVE-2023-22412

CVE-2023-22415

CVE-2023-22401

CVE-2023-22406

CVE-2023-22408

CVE-2023-22403

CVE-2023-22399

CVE-2022-0778

Documentation additionnelle:

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-Receipt-of-crafted-TCP-packets-on-Ethernet-console-port-results-in-MBUF-leak-leading-to-Denial-of-Service-DoS-CVE-2023-22396

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-MX-Series-with-MPC10-MPC11-When-Suspicious-Control-Flow-Detection-scfd-is-enabled-and-an-attacker-is-sending-specific-traffic-this-causes-a-memory-leak-CVE-2023-22410

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-Evolved-Multiple-vulnerabilities-resolved-in-OpenSSL

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-SRX-Series-and-MX-Series-with-SPC3-When-IPsec-VPN-is-configured-iked-will-core-when-a-specifically-formatted-payload-is-received-CVE-2023-22404

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-SRX-Series-A-memory-leak-might-be-observed-in-IPsec-VPN-scenario-leading-to-an-FPC-crash-CVE-2023-22417

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-MX-Series-FPC-crash-when-an-IPsec6-tunnel-processes-specific-IPv4-packets-CVE-2023-22413

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-SRX-Series-The-flowd-daemon-will-crash-when-Unified-Policies-are-used-with-IPv6-and-certain-dynamic-applications-are-rejected-by-the-device-CVE-2023-22411

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-ACX2K-Series-Receipt-of-a-high-rate-of-specific-traffic-will-lead-to-a-Denial-of-Service-DoS-CVE-2023-22391

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-RPD-crash-upon-receipt-of-BGP-route-with-invalid-next-hop-CVE-2023-22393

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-SRX-Series-and-MX-Series-Memory-leak-due-to-receipt-of-specially-crafted-SIP-calls-CVE-2023-22394

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-MX-Series-and-SRX-Series-The-flowd-daemon-will-crash-if-the-SIP-ALG-is-enabled-and-specific-SIP-messages-are-processed-CVE-2023-22412

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-MX-Series-and-SRX-Series-The-flow-processing-daemon-flowd-will-crash-when-a-specific-H-323-packet-is-received-CVE-2023-22415

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-PTX10008-PTX10016-When-a-specific-SNMP-MIB-is-queried-the-FPC-will-crash-CVE-2023-22401

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-OpenSSL-Infinite-loop-in-BN-mod-sqrt-reachable-when-parsing-certificates-CVE-2022-0778

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-SRX-Series-The-flowd-daemon-will-crash-if-SIP-ALG-is-enabled-and-a-malicious-SIP-packet-is-received-CVE-2023-22416

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-QFX10K-Series-PFE-crash-upon-receipt-of-specific-genuine-packets-when-sFlow-is-enabled-CVE-2023-22399

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-SRX-5000-Series-Upon-processing-of-a-specific-SIP-packet-an-FPC-can-crash-CVE-2023-22408

Bulletin de sécurité Juniper 2023-01

https://supportportal.juniper.net/s/article/2023-01-Security-Bulletin-Junos-OS-QFX10k-Series-ICCP-flap-will-be-observed-due-to-excessive-specific-traffic-CVE-2023-22403

Bulletin de sécurité Juniper 2023-01

Date de publication:

2023-01-13

Référence:

21