VDB
CVE-2023-22393
CVE-2023-22393
PUBLISHED
In Juniper JUNOS und JUNOS Evolved bestehen mehrere Schwachstellen. Betroffen sind die BGP und OSPF Komponenten des Routing Protocol Daemon (rpd), sowie der Advanced Forwarding Toolkit Manager daemon (aftmand). Ursachen sind fehlende Prüfungen, nicht freigegebener Speicher und nicht initialisierte Zeiger. Ein entfernter, anonymer oder lokaler Angreifer kann diese Schwachstellen für einen Denial of Service Angriff ausnutzen.
EPSS 0.32% · 55.7th percentile
Risk Scores
EPSS Score
0.32%
55.7th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Juniper JUNOS Evolved | |
| Juniper | Juniper JUNOS |
Exploit Intelligence
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
- CVE-2022-32250.yara (github-yara)
Timeline
- Jan 11, 2023 CVE Published
- Jan 13, 2023 EPSS Score
- Feb 23, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 5, 2023 EPSS Score
- May 15, 2023 EPSS Score
- Jun 25, 2023 EPSS Score
- Aug 5, 2023 EPSS Score
- Sep 15, 2023 EPSS Score
- Oct 26, 2023 EPSS Score
- Dec 5, 2023 EPSS Score
- Jan 15, 2024 EPSS Score
References
- https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-0083.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-0083 advisory
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA70197 advisory
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA70202 advisory
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA70203 advisory
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA70189 advisory
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA70181 advisory