CVE-2022-22155 : What You Need to Know
Learn about CVE-2022-22155, an Uncontrolled Resource Consumption vulnerability in Juniper Networks Junos OS affecting ACX5448 routers. Find out about the impact, affected versions, and mitigation steps.
An in-depth look at the Uncontrolled Resource Consumption vulnerability in Juniper Networks Junos OS affecting ACX5448 routers.
Understanding CVE-2022-22155
This CVE involves an Uncontrolled Resource Consumption vulnerability in the IPv6 neighbor state change events in Juniper Networks Junos OS, impacting the FPC of ACX5448 routers.
What is CVE-2022-22155?
Juniper Networks Junos OS allows an adjacent attacker to cause a memory leak in the FPC of an ACX5448 router, resulting in a Denial of Service condition due to continuous IPv6 neighbor flapping.
The Impact of CVE-2022-22155
The vulnerability poses a medium severity threat with a CVSS base score of 6.5, leading to a sustained Denial of Service due to resource exhaustion in affected routers.
Technical Details of CVE-2022-22155
Learn about the vulnerability description, affected systems, and exploitation mechanism.
Vulnerability Description
The flaw causes the FPC of ACX5448 routers to exhaust resources when faced with specific IPv6 neighbor state changes, requiring manual intervention to restore service.
Affected Systems and Versions
This vulnerability affects Juniper Networks Junos OS on ACX5448 routers with versions including 18.4R3-S10, 19.1R3-S5, 19.2R1-S8, 19.2R3-S2, 19.3R2-S6, 19.3R3-S2, 19.4R1-S3, 19.4R2-S2, 19.4R3, 20.1R2, 20.2R1-S1, and 20.2R2.
Exploitation Mechanism
No known malicious exploitation has been reported by the Juniper SIRT team for this vulnerability.
Mitigation and Prevention
Explore immediate steps, long-term security practices, and patching solutions to address CVE-2022-22155.
Immediate Steps to Take
There are no known workarounds for this issue. Users are advised to apply the provided software releases promptly to mitigate the vulnerability.
Long-Term Security Practices
Maintain up-to-date software versions and follow best security practices to prevent vulnerabilities in network devices.
Patching and Updates
Update to the following Junos OS releases to resolve CVE-2022-22155: 18.4R3-S10, 19.1R3-S5, 19.2R1-S8, 19.2R3-S2, 19.3R2-S6, 19.3R3-S2, 19.4R1-S3, 19.4R2-S2, 19.4R3, 20.1R2, 20.2R1-S1, 20.2R2, 20.3R1, and subsequent releases.