CVE-2023-44186

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 11, 2023

Updated: Mar 6, 2024

CWE ID 755

Summary

CVE-2023-44186 is a Denial of Service (DoS) vulnerability in AS PATH processing of Juniper Networks Junos OS and Junos OS Evolved. An attacker can exploit this Improper Handling of Exceptional Conditions vulnerability by sending a BGP update message with an excessively long AS PATH containing numerous 4-byte AS numbers. This issue affects various Junos OS and Junos OS Evolved versions, causing sustained DoS conditions when Non-Stop Routing (NSR) is enabled, the router has a non-4-byte-AS capable BGP neighbor, and a prefix with a long AS PATH is received and advertised. Note that NSR is not supported on the SRX Series and thus is not impacted by this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database