Detections
Analytics
Juniper Junos OS DoS (JSA69898)
critical Nessus Plugin ID 166332
Language:
Synopsis
The remote device is missing a vendor-supplied security patch.Description
The version of Junos OS installed on the remote host is affected by a DoS vulnerability as referenced in the JSA69898 advisory due to the Improper Handling of an Unexpected Data Type in the processing of EVPN routes on Juniper Networks Junos OS and Junos OS Evolved. An attacker in direct control of a BGP client connected to a route reflector, or via a machine in the middle (MITM) attack, can send a specific EVPN route contained within a BGP Update, triggering a routing protocol daemon (RPD) crash, leading to a Denial of Service (DoS) condition. Continued receipt and processing of these specific EVPN routes could create a sustained Denial of Service (DoS) condition.Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.
Solution
Apply the relevant Junos software release referenced in Juniper advisory JSA69898See Also
http://www.nessus.org/u?99086ea4
http://www.nessus.org/u?b616ed59
http://www.nessus.org/u?0d4fd08b
Plugin Details
Severity: Critical
ID: 166332
File Name: juniper_jsa69898.nasl
Version: 1.6
Type: combined
Family: Junos Local Security Checks
Published: 10/20/2022
Updated: 1/2/2023
Supported Sensors: Nessus
Risk Information
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 5.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS Score Source: CVE-2022-22199
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:juniper:junos
Required KB Items: Host/Juniper/JUNOS/Version
Exploit Ease: No known exploits are available
Patch Publication Date: 10/12/2022
Vulnerability Publication Date: 10/12/2022
Reference Information
CVE: CVE-2022-22199
IAVA: 2022-A-0421
JSA: JSA69898