An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on QFX10000 Series allows a network based attacker to cause a Denial of Service (DoS).
If a specific valid IP packet is received and that packet needs to be routed over a VXLAN tunnel, this will result in a PFE wedge condition due to which traffic gets impacted. As this is not a crash and restart scenario, this condition will persist until the system is rebooted to recover.
This issue affects Juniper Networks Junos OS on QFX10000:
20.3 version 20.3R1 and later versions;
20.4 versions prior to 20.4R3-S5;
21.1 versions prior to 21.1R3-S5;
21.2 versions prior to 21.2R3-S5;
21.3 versions prior to 21.3R3-S4;
21.4 versions prior to 21.4R3-S1;
22.1 versions prior to 22.1R3;
22.2 versions prior to 22.2R2;
22.3 versions prior to 22.3R1-S2, 22.3R2.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://supportportal.juniper.net/JSA71642 |
History
Thu, 07 Nov 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Juniper Networks
Juniper Networks junos Os |
|
CPEs | cpe:2.3:a:juniper_networks:junos_os:*:*:*:*:*:*:*:* | |
Vendors & Products |
Juniper Networks
Juniper Networks junos Os |
|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: juniper
Published: 2023-07-14T17:11:26.454Z
Updated: 2024-11-07T14:24:52.880Z
Reserved: 2023-06-27T16:17:25.276Z
Link: CVE-2023-36835
Vulnrichment
Updated: 2024-08-02T17:01:09.846Z
NVD
Status : Analyzed
Published: 2023-07-14T18:15:10.133
Modified: 2023-07-27T14:30:58.727
Link: CVE-2023-36835
Redhat
No data.