21.2

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

juniper

CWE-824

NVD

Published: 2022-04-14

Updated: 2022-04-23

Summary

An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service (DoS). Continued receipt of these specific packets will cause a sustained Denial of Service condition. On all MX and SRX platforms, if the SIP ALG is enabled, an MS-MPC or MS-MIC, or SPC will crash if it receives a SIP message with a specific contact header format. This issue affects Juniper Networks Junos OS on MX Series and SRX Series: 20.4 versions prior to 20.4R3; 21.1 versions prior to 21.1R2-S1, 21.1R3; 21.2 versions prior to 21.2R2. This issue does not affect versions prior to 20.4R1.

Vulnerable Configurations

Part	Description	Count
OS	Juniper Juniper Junos 20.4 Juniper Junos 21.1 Juniper Junos 21.2	11
Hardware	Juniper Juniper Mx10 - Juniper Mx10000 - Juniper Mx10003 - Juniper Mx10008 - Juniper Mx10016 - Juniper Mx104 - Juniper Mx150 - Juniper Mx2008 - Juniper Mx2010 - Juniper Mx2020 - Juniper Mx204 - Juniper Mx240 - Juniper Mx40 - Juniper Mx480 - Juniper MX5 - Juniper Mx80 - Juniper Mx960 - Juniper Srx100 - Juniper Srx110 - Juniper Srx1400 - Juniper Srx1500 - Juniper Srx210 - Juniper Srx220 - Juniper Srx240 - Juniper Srx240H2 - Juniper Srx300 - Juniper Srx320 - Juniper Srx340 - Juniper Srx3400 - Juniper Srx345 - Juniper Srx3600 - Juniper Srx380 - Juniper Srx4000 - Juniper Srx4100 - Juniper Srx4200 - Juniper Srx4600 - Juniper Srx5000 - Juniper Srx5400 - Juniper Srx550 - Juniper Srx550 HM - Juniper Srx550M - Juniper Srx5600 - Juniper Srx5800 - Juniper Srx650 -	44

Common Weakness Enumeration (CWE)

CWE-824 - Access of Uninitialized Pointer

References

https://kb.juniper.net/JSA69513