Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-36836

A Use of an Uninitialized Resource vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with low privileges to cause a Denial of Service (DoS). On all Junos OS and Junos OS Evolved platforms, in a Multicast only Fast Reroute (MoFRR) scenario, the rpd process can crash when a a specific low privileged CLI command is executed. The rpd crash will impact all routing protocols until the process has automatically been restarted. As the operational state which makes this issue exploitable is outside the attackers control, this issue is considered difficult to exploit. Continued execution of this command will lead to a sustained DoS. This issue affects: Juniper Networks Junos OS 19.4 version 19.4R3-S5 and later versions prior to 19.4R3-S9; 20.1 version 20.1R2 and later versions; 20.2 versions prior to 20.2R3-S7; 20.3 versions prior to 20.3R3-S5; 20.4 versions prior to 20.4R3-S6; 21.1 versions prior to 21.1R3-S4; 21.2 versions prior to 21.2R3-S2; 21.3 versions prior to 21.3R3-S1; 21.4 versions prior to 21.4R3; 22.1 versions prior to 22.1R1-S2, 22.1R2; 22.2 versions prior to 22.2R2. Juniper Networks Junos OS Evolved All versions prior to 20.4R3-S6-EVO; 21.1-EVO version 21.1R1-EVO and later versions; 21.2-EVO version 21.2R1-EVO and later versions; 21.3-EVO versions prior to 21.3R3-S1-EVO; 21.4-EVO versions prior to 21.4R3-EVO; 22.1-EVO versions prior to 22.1R1-S2-EVO, 22.1R2-EVO; 22.2-EVO versions prior to 22.2R2-EVO.

Published

2023-07-14T18:15:10.213

Last Modified

2024-11-21T08:10:42.713

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 4.7 (MEDIUM)

Weaknesses

Type: Primary
CWE-908

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	19.4	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.1	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.2	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.3	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	20.4	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.1	Yes
Operating System	juniper	junos	21.2	Yes
Operating System	juniper	junos	21.2	Yes
Operating System	juniper	junos	21.2	Yes
Operating System	juniper	junos	21.2	Yes
Operating System	juniper	junos	21.2	Yes
Operating System	juniper	junos	21.2	Yes
Operating System	juniper	junos	21.2	Yes
Operating System	juniper	junos	21.2	Yes
Operating System	juniper	junos	21.2	Yes
Operating System	juniper	junos	21.3	Yes
Operating System	juniper	junos	21.3	Yes
Operating System	juniper	junos	21.3	Yes
Operating System	juniper	junos	21.3	Yes
Operating System	juniper	junos	21.3	Yes
Operating System	juniper	junos	21.3	Yes
Operating System	juniper	junos	21.3	Yes
Operating System	juniper	junos	21.3	Yes
Operating System	juniper	junos	21.4	Yes
Operating System	juniper	junos	21.4	Yes
Operating System	juniper	junos	21.4	Yes
Operating System	juniper	junos	21.4	Yes
Operating System	juniper	junos	21.4	Yes
Operating System	juniper	junos	21.4	Yes
Operating System	juniper	junos	21.4	Yes
Operating System	juniper	junos	22.1	Yes
Operating System	juniper	junos	22.1	Yes
Operating System	juniper	junos	22.2	Yes
Operating System	juniper	junos	22.2	Yes
Operating System	juniper	junos	22.2	Yes
Operating System	juniper	junos_os_evolved	< 20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	20.4	Yes
Operating System	juniper	junos_os_evolved	21.1	Yes
Operating System	juniper	junos_os_evolved	21.1	Yes
Operating System	juniper	junos_os_evolved	21.1	Yes
Operating System	juniper	junos_os_evolved	21.1	Yes
Operating System	juniper	junos_os_evolved	21.1	Yes
Operating System	juniper	junos_os_evolved	21.1	Yes
Operating System	juniper	junos_os_evolved	21.1	Yes
Operating System	juniper	junos_os_evolved	21.1	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.2	Yes
Operating System	juniper	junos_os_evolved	21.3	Yes
Operating System	juniper	junos_os_evolved	21.3	Yes
Operating System	juniper	junos_os_evolved	21.3	Yes
Operating System	juniper	junos_os_evolved	21.3	Yes
Operating System	juniper	junos_os_evolved	21.3	Yes
Operating System	juniper	junos_os_evolved	21.3	Yes
Operating System	juniper	junos_os_evolved	21.3	Yes
Operating System	juniper	junos_os_evolved	21.4	Yes
Operating System	juniper	junos_os_evolved	21.4	Yes
Operating System	juniper	junos_os_evolved	21.4	Yes
Operating System	juniper	junos_os_evolved	21.4	Yes
Operating System	juniper	junos_os_evolved	21.4	Yes
Operating System	juniper	junos_os_evolved	21.4	Yes
Operating System	juniper	junos_os_evolved	21.4	Yes
Operating System	juniper	junos_os_evolved	22.1	Yes
Operating System	juniper	junos_os_evolved	22.1	Yes
Operating System	juniper	junos_os_evolved	22.2	Yes
Operating System	juniper	junos_os_evolved	22.2	Yes

References

https://supportportal.juniper.net/JSA71643 Vendor Advisory ([email protected])
https://supportportal.juniper.net/JSA71643 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)