An Improper Locking vulnerability in the SIP ALG of Juniper Networks Junos OS on MX Series and SRX Series allows an unauthenticated networked attacker to cause a flowprocessing daemon (flowd) crash and thereby a Denial of Service (DoS). Continued receipt of these specific packets will cause a sustained Denial of Service condition. This issue can occur in a scenario where the SIP ALG is enabled and specific SIP messages are being processed simultaneously. This issue affects: Juniper Networks Junos OS on MX Series and SRX Series 20.4 versions prior to 20.4R3-S1; 21.1 versions prior to 21.1R2-S2, 21.1R3; 21.2 versions prior to 21.2R1-S2, 21.2R2; 21.3 versions prior to 21.3R1-S1, 21.3R2. This issue does not affect Juniper Networks Junos OS versions prior to 20.4R1.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://kb.juniper.net/JSA11281 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: juniper
Published: 2022-01-19T00:21:24.193997Z
Updated: 2024-09-16T20:02:47.465Z
Reserved: 2021-12-21T00:00:00
Link: CVE-2022-22175
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-01-19T01:15:09.393
Modified: 2024-11-21T06:46:19.223
Link: CVE-2022-22175
Redhat
No data.