CVE-2023-44193 : Security Advisory and Response

A detailed overview of CVE-2023-44193 affecting Junos OS on MX Series devices.

Understanding CVE-2023-44193

This CVE involves an Improper Release of Memory Before Removing Last Reference vulnerability in the Packet Forwarding Engine of Juniper Networks Junos OS.

What is CVE-2023-44193?

An attacker could exploit this vulnerability to cause an FPC crash, leading to a Denial of Service (DoS) condition on certain Junos MX Series devices running specific configurations.

The Impact of CVE-2023-44193

The vulnerability affects Juniper Networks Junos OS on MX Series devices with various versions, potentially resulting in FPC crashes and DoS incidents.

Technical Details of CVE-2023-44193

This section provides details on the vulnerability description, affected systems and versions, and the exploitation mechanism.

Vulnerability Description

The vulnerability allows a local, low privileged attacker to induce an FPC crash, causing a DoS condition on affected devices.

Affected Systems and Versions

Junos OS versions prior to 20.4R3-S7, 21.1R3-S5, 21.2R3-S4, 21.3R3-S4, 21.4R3-S3, 22.1R3-S1, 22.2R2-S1, 22.2R3, 22.3R1-S2, and 22.3R2 on MX Series devices are vulnerable.

Exploitation Mechanism

Juniper SIRT has no reported instances of malicious exploitation of this vulnerability.

Mitigation and Prevention

Learn about the immediate steps to take, long-term security practices, and patching and updates required to address CVE-2023-44193.

Immediate Steps to Take

Disabling CFM MIP functionality can prevent this issue.

Long-Term Security Practices

Regularly update Junos OS to the fixed versions provided by Juniper Networks.

Patching and Updates

Ensure you have updated to Junos OS releases including 20.4R3-S7, 21.1R3-S5, 21.2R3-S4, 21.3R3-S4, 21.4R3-S3, 22.1R3-S1, 22.2R2-S1, 22.2R3, 22.3R1-S2, 22.3R2, 22.4R1, or later.