CVE-2023-44191

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Oct 13, 2023

Updated: Oct 20, 2023

CWE ID 770

Summary

CVE-2023-44191 is a Denial of Service (DoS) vulnerability impacting Juniper Networks Junos OS on QFX5000 Series and EX4000 Series. An unauthenticated attacker can exploit this Allocation of Resources Without Limits or Throttling issue by sending specific DHCP packets, leading to PFE hogging and dropped socket connections. This affects several Junos OS versions, including 21.1R3-S5, 21.2R3-S5, 21.3R3-S5, 21.4R3-S4, 22.1R3-S3, 22.2R3-S1, 22.3R2-S2, 22.3R3, 22.4R2, but not Junos OS versions prior to 21.1R1.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Juniper Junos

Affected Vendors

Juniper Networks

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sz9Cnz
https://www.cve.org/CVERecord?id=CVE-2023-44191
https://nvd.nist.gov/vuln/detail/CVE-2023-44191

Back to Vulnerability Database