A vulnerability has been identified in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. This vulnerability allows an unauthenticated, network-based attacker to cause a denial-of-service (DoS) condition. On devices with Segment Routing over IPv6 (SRv6) enabled, an attacker can send a malformed BGP UPDATE packet that causes the rpd to crash and restart. Continued receipt of these malformed UPDATE packets can lead to a sustained DoS condition. This vulnerability affects both iBGP and eBGP, as well as IPv4 and IPv6. The issue is present in all versions of Junos OS and Junos OS Evolved prior to specific release patches, with certain version ranges also affected.
Exploitation of this vulnerability causes the routing protocol daemon (rpd) to crash and restart, creating a denial-of-service condition that can be sustained with continued receipt of malformed BGP UPDATE packets.
Users can upgrade to Junos OS versions 21.2R3-S9, 21.4R3-S10, 22.2R3-S5, 22.3R3-S4, 22.4R3-S3, 23.2R2-S2 or 23.4R2. For Junos OS Evolved, the patched versions are 21.2R3-S9-EVO, 21.4R3-S10-EVO, 22.2R3-S5-EVO, 22.3R3-S4-EVO, 22.4R3-S3-EVO, 23.2R2-S2-EVO and 23.4R2-EVO.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
