CVE-2023-44203

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Oct 13, 2023

Updated: Oct 19, 2023

CWE ID 703

Summary

CVE-2023-44203 is a vulnerability affecting the Packet Forwarding Engine (pfe) in Juniper Networks Junos OS on select QFX5000 Series, EX2300, EX3400, EX4100, EX4400, and EX4600 platforms. An attacker can exploit this Improper Check or Handling of Exceptional Conditions issue by sending specific traffic, leading to packet flooding and a Denial of Service (DoS) attack. Particularly, when a certain IGMP packet is received in an isolated VLAN, it is inadvertently duplicated to all other ports under the primary VLAN, causing a flood. This vulnerability affects various Juniper Junos OS versions prior to specific releases on each platform.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database