Description
An Improper Access Control vulnerability in Juniper Networks Junos OS Evolved allows a network-based unauthenticated attacker who is able to connect to a specific open IPv4 port, which in affected releases should otherwise be unreachable, to cause the CPU to consume all resources as more traffic is sent to the port to create a Denial of Service (DoS) condition. Continued receipt and processing of these packets will create a sustained Denial of Service (DoS) condition. This issue affects: Juniper Networks Junos OS Evolved 20.4 versions prior to 20.4R3-S2-EVO; 21.1 versions prior to 21.1R3-S1-EVO; 21.2 versions prior to 21.2R3-EVO; 21.3 versions prior to 21.3R2-EVO; 21.4 versions prior to 21.4R2-EVO. This issue does not affect Junos OS.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
https://kb.juniper.net/JSA69516
Scores
CVSS v3
7.5
EPSS
0.0116
EPSS Percentile
78.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-16
CWE-284
CWE-200
Status
published
Products (5)
juniper/junos_os_evolved
20.4 r1 (9 CPE variants)
juniper/junos_os_evolved
21.1 r1 (4 CPE variants)
juniper/junos_os_evolved
21.2 r1 (6 CPE variants)
juniper/junos_os_evolved
21.3 r1 (2 CPE variants)
juniper/junos_os_evolved
21.4 r1 (2 CPE variants)
Published
Apr 14, 2022
Tracked Since
Feb 18, 2026