Vulnerabilities > CVE-2022-22207 - Use After Free vulnerability in Juniper Junos

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

juniper

CWE-416

NVD

Published: 2022-07-20

Updated: 2022-07-29

Summary

A Use After Free vulnerability in the Advanced Forwarding Toolkit (AFT) manager process (aftmand) of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause a kernel crash due to intensive polling of Abstracted Fabric (AF) interface statistics and thereby a Denial of Service (DoS). Continued gathering of AF interface statistics will create a sustained Denial of Service (DoS) condition. This issue affects Juniper Networks Junos OS on MX Series: 20.1 versions later than 20.1R1; 20.2 versions prior to 20.2R3-S5; 20.3 versions prior to 20.3R3-S4; 20.4 versions prior to 20.4R3; 21.1 versions prior to 21.1R2; 21.2 versions prior to 21.2R2.

Vulnerable Configurations

Part	Description	Count
OS	Juniper Juniper Junos 20.1 Juniper Junos 20.2 Juniper Junos 20.3 Juniper Junos 20.4 Juniper Junos 21.1 Juniper Junos 21.2	48
Hardware	Juniper Juniper Mx10 - Juniper Mx10000 - Juniper Mx10003 - Juniper Mx10008 - Juniper Mx10016 - Juniper Mx104 - Juniper Mx150 - Juniper Mx2008 - Juniper Mx2010 - Juniper Mx2020 - Juniper Mx204 - Juniper Mx240 - Juniper Mx40 - Juniper Mx480 - Juniper MX5 - Juniper Mx80 - Juniper Mx960 -	17

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

References

https://kb.juniper.net/JSA69711