Juniper Networks Junos Space Uncontrolled Resource Consumption Vulnerability in HTTP Daemon Leading to Denial-of-Service

A vulnerability allowing uncontrolled resource consumption has been identified in the HTTP daemon of Juniper Networks Junos Space. This issue allows an unauthenticated, network-based attacker to flood the device with inbound API calls, consuming all system resources and causing a denial-of-service condition. The flooding of connection requests exhausts all available file handles, blocking access to the system via SSH and the web user interface. As a result, the management interface becomes unavailable, and a manual reboot is required to restore functionality. This vulnerability affects all Junos Space versions prior to 22.2R1 Patch V3 and versions from 23.1 prior to 23.1R1 Patch V3.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the management interface to become unresponsive and requiring a manual reboot to restore functionality.