Lucene search

[email protected]NVD:CVE-2023-36849

HistoryJul 14, 2023 - 6:15 p.m.

CVE-2023-36849

2023-07-1418:15:10

CWE-703

[email protected]

web.nvd.nist.gov

juniper networks

junos os

vulnerability

layer-2 control protocols

dos

unauthenticated attacker

lldp

stp

mvrp

erp

cve-2023-36849

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

12.7%

JSON

An Improper Check or Handling of Exceptional Conditions vulnerability in the Layer-2 control protocols daemon (l2cpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated adjacent attacker to cause a Denial of Service (DoS).

When a malformed LLDP packet is received, l2cpd will crash and restart. The impact of the l2cpd crash is reinitialization of STP protocols (RSTP, MSTP or VSTP), and MVRP and ERP. Also, if any services depend on LLDP state (like PoE or VoIP device recognition), then these will also be affected. Continued receipt of such packets will lead to a sustained Denial of Service.

This issue affects:
Juniper Networks Junos OS
21.4 versions prior to 21.4R3-S3;
22.1 versions prior to 22.1R3-S3;
22.2 versions prior to 22.2R2-S1, 22.2R3;
22.3 versions prior to 22.3R2.

Juniper Networks Junos OS Evolved
21.4-EVO versions prior to 21.4R3-S2-EVO;
22.1-EVO versions prior to 22.1R3-S3-EVO;
22.2-EVO versions prior to 22.2R2-S1-EVO, 22.2R3-EVO;
22.3-EVO versions prior to 22.3R2-EVO.

Affected configurations

Nvd

Node

juniperjunosMatch21.4-

juniperjunosMatch21.4r1

juniperjunosMatch21.4r1-s1

juniperjunosMatch21.4r1-s2

juniperjunosMatch21.4r2

juniperjunosMatch21.4r2-s1

juniperjunosMatch21.4r2-s2

juniperjunosMatch21.4r3

juniperjunosMatch21.4r3-s1

juniperjunosMatch21.4r3-s2

juniperjunosMatch22.1r1

juniperjunosMatch22.1r1-s1

juniperjunosMatch22.1r1-s2

juniperjunosMatch22.1r2

juniperjunosMatch22.1r2-s1

juniperjunosMatch22.1r2-s2

juniperjunosMatch22.1r3

juniperjunosMatch22.1r3-s1

juniperjunosMatch22.1r3-s2

juniperjunosMatch22.2r1

juniperjunosMatch22.2r1-s1

juniperjunosMatch22.2r1-s2

juniperjunosMatch22.2r2

juniperjunosMatch22.3r1

juniperjunosMatch22.3r1-s1

juniperjunosMatch22.3r1-s2

Node

juniperjunos_os_evolvedMatch21.4-

juniperjunos_os_evolvedMatch21.4r1

juniperjunos_os_evolvedMatch21.4r1-s1

juniperjunos_os_evolvedMatch21.4r1-s2

juniperjunos_os_evolvedMatch21.4r2

juniperjunos_os_evolvedMatch21.4r2-s1

juniperjunos_os_evolvedMatch21.4r2-s2

juniperjunos_os_evolvedMatch21.4r3

juniperjunos_os_evolvedMatch21.4r3-s1

juniperjunos_os_evolvedMatch22.1r1

juniperjunos_os_evolvedMatch22.1r1-s1

juniperjunos_os_evolvedMatch22.1r1-s2

juniperjunos_os_evolvedMatch22.1r2

juniperjunos_os_evolvedMatch22.1r2-s1

juniperjunos_os_evolvedMatch22.1r3

juniperjunos_os_evolvedMatch22.1r3-s1

juniperjunos_os_evolvedMatch22.1r3-s2

juniperjunos_os_evolvedMatch22.2r1

juniperjunos_os_evolvedMatch22.2r1-s1

juniperjunos_os_evolvedMatch22.2r2

juniperjunos_os_evolvedMatch22.3r1

juniperjunos_os_evolvedMatch22.3r1-s1

juniperjunos_os_evolvedMatch22.3r1-s2

VendorProductVersionCPE
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:-:*:*:*:*:*:*
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:r1:*:*:*:*:*:*
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:r1-s1:*:*:*:*:*:*
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:r1-s2:*:*:*:*:*:*
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:r2:*:*:*:*:*:*
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:r2-s1:*:*:*:*:*:*
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:r2-s2:*:*:*:*:*:*
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:r3:*:*:*:*:*:*
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:r3-s1:*:*:*:*:*:*
juniperjunos21.4cpe:2.3:o:juniper:junos:21.4:r3-s2:*:*:*:*:*:*

Vendor	Product	Version	CPE
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:-::::::
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:r1::::::
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:r1-s1::::::
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:r1-s2::::::
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:r2::::::
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:r2-s1::::::
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:r2-s2::::::
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:r3::::::
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:r3-s1::::::
juniper	junos	21.4	cpe:2.3:o:juniper:junos:21.4:r3-s2::::::

Rows per page:

1-10 of 491

References

supportportal.juniper.net/JSA71660

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

Percentile

12.7%

JSON

Related for NVD:CVE-2023-36849

prion1 cvelist1 cve1