{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2023-44175","assignerOrgId":"8cbe9d5a-a066-4c94-8978-4b15efeae968","state":"PUBLISHED","assignerShortName":"juniper","dateReserved":"2023-09-26T19:30:17.662Z","datePublished":"2023-10-12T22:59:53.340Z","dateUpdated":"2024-09-19T13:10:45.668Z"},"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","product":"Junos OS","vendor":"Juniper Networks","versions":[{"lessThan":"20.4R3-S7","status":"affected","version":"0","versionType":"semver"},{"lessThan":"21.1R3-S4","status":"affected","version":"21.1","versionType":"semver"},{"lessThan":"21.2R3-S5","status":"affected","version":"21.2","versionType":"semver"},{"lessThan":"21.3R3-S4","status":"affected","version":"21.3","versionType":"semver"},{"lessThan":"21.4R3-S4","status":"affected","version":"21.4","versionType":"semver"},{"lessThan":"22.1R3-S4","status":"affected","version":"22.1","versionType":"semver"},{"lessThan":"22.2R3","status":"affected","version":"22.2","versionType":"semver"},{"lessThan":"22.3R3","status":"affected","version":"22.3","versionType":"semver"},{"lessThan":"22.4R3","status":"affected","version":"22.4","versionType":"semver"}]},{"defaultStatus":"unaffected","product":"Junos OS Evolved","vendor":"Juniper Networks","versions":[{"lessThan":"22.3R3-EVO","status":"affected","version":"0","versionType":"semver"},{"lessThan":"22.4R3-EVO","status":"affected","version":"22.4-EVO","versionType":"semver"},{"lessThan":"23.2R1-EVO","status":"affected","version":"23.2-EVO","versionType":"semver"}]}],"configurations":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>This issue is applicable to devices where PIM is enabled.</p><tt>[protocols pim]<br></tt><tt>[protocols pim rp config]<br></tt><tt>[protocols pim interface ]</tt>"}],"value":"This issue is applicable to devices where PIM is enabled.\n\n[protocols pim]\n[protocols pim rp config]\n[protocols pim interface ]"}],"datePublic":"2023-10-11T16:00:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"\n\n<p>A Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows to send specific genuine PIM packets to the device resulting in rpd to crash causing a Denial of Service (DoS).</p><p>Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.</p><p>Note: This issue is not noticed when all the devices in the network are Juniper devices.</p><p>This issue affects Juniper Networks:</p><p>Junos OS:</p><p></p><ul><li>All versions prior to 20.4R3-S7;</li><li>21.2 versions prior to 21.2R3-S5;</li><li>21.3 versions prior to 21.3R3-S4;</li><li>21.4 versions prior to 21.4R3-S4;</li><li>22.1 versions prior to 22.1R3-S4;</li><li>22.2 versions prior to 22.2R3;</li><li>22.3 versions prior to 22.3R3;</li><li>22.4 versions prior to 22.4R3.</li></ul><p></p><p>Junos OS Evolved:</p><p></p><ul><li>All versions prior to 22.3R3-EVO;</li><li>22.4-EVO versions prior to 22.4R3-EVO;</li><li>23.2-EVO versions prior to 23.2R1-EVO.</li></ul><p></p>\n\n"}],"value":"\nA Reachable Assertion vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows to send specific genuine PIM packets to the device resulting in rpd to crash causing a Denial of Service (DoS).\n\nContinued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.\n\nNote: This issue is not noticed when all the devices in the network are Juniper devices.\n\nThis issue affects Juniper Networks:\n\nJunos OS:\n\n\n\n  *  All versions prior to 20.4R3-S7;\n  *  21.2 versions prior to 21.2R3-S5;\n  *  21.3 versions prior to 21.3R3-S4;\n  *  21.4 versions prior to 21.4R3-S4;\n  *  22.1 versions prior to 22.1R3-S4;\n  *  22.2 versions prior to 22.2R3;\n  *  22.3 versions prior to 22.3R3;\n  *  22.4 versions prior to 22.4R3.\n\n\n\n\nJunos OS Evolved:\n\n\n\n  *  All versions prior to 22.3R3-EVO;\n  *  22.4-EVO versions prior to 22.4R3-EVO;\n  *  23.2-EVO versions prior to 23.2R1-EVO.\n\n\n\n\n\n\n"}],"exploits":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>Juniper SIRT is not aware of any malicious exploitation of this vulnerability.</p>"}],"value":"Juniper SIRT is not aware of any malicious exploitation of this vulnerability.\n\n"}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"ADJACENT_NETWORK","availabilityImpact":"HIGH","baseScore":6.5,"baseSeverity":"MEDIUM","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-617","description":"CWE-617 Reachable Assertion","lang":"en","type":"CWE"}]},{"descriptions":[{"description":"Denial of Service (DoS)","lang":"en"}]}],"providerMetadata":{"orgId":"8cbe9d5a-a066-4c94-8978-4b15efeae968","shortName":"juniper","dateUpdated":"2023-10-12T22:59:53.340Z"},"references":[{"tags":["vendor-advisory"],"url":"https://supportportal.juniper.net/JSA73141"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>The following software releases have been updated to resolve this specific issue:</p><p>Junos OS: 20.4R3-S7, 21.2R3-S5, 21.3R3-S4, 21.4R3-S4, 22.1R3-S4, 22.2R3, 22.3R2-S1, 22.3R3, 22.4R2, 22.4R3, 23.2R1, and all subsequent releases.</p><p>Junos OS Evolved: 22.3R3-EVO, 22.4R3-EVO, 23.2R1-EVO, and all subsequent releases.</p>"}],"value":"The following software releases have been updated to resolve this specific issue:\n\nJunos OS: 20.4R3-S7, 21.2R3-S5, 21.3R3-S4, 21.4R3-S4, 22.1R3-S4, 22.2R3, 22.3R2-S1, 22.3R3, 22.4R2, 22.4R3, 23.2R1, and all subsequent releases.\n\nJunos OS Evolved: 22.3R3-EVO, 22.4R3-EVO, 23.2R1-EVO, and all subsequent releases.\n\n"}],"source":{"advisory":"JSA73141","defect":["1719596"],"discovery":"USER"},"timeline":[{"lang":"en","time":"2023-10-11T16:00:00.000Z","value":"Initial Publication"}],"title":"Junos OS and Junos OS Evolved: Receipt of a specific genuine PIM packet causes RPD crash","workarounds":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>There are no known workarounds for this issue.</p>"}],"value":"There are no known workarounds for this issue.\n\n"}],"x_generator":{"engine":"Vulnogram 0.1.0-av217"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T19:59:51.593Z"},"title":"CVE Program Container","references":[{"tags":["vendor-advisory","x_transferred"],"url":"https://supportportal.juniper.net/JSA73141"}]},{"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2024-09-19T13:10:37.854157Z","id":"CVE-2023-44175","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-09-19T13:10:45.668Z"}}]}}