MEDIUM✓ PATCH🇬🇧 English

CVE-2023-28968

CVSS 5.3v3.1pub. 2023-04-17upd. 2024-11-21

An Improperly Controlled Sequential Memory Allocation vulnerability in the Juniper Networks Deep Packet Inspection-Decoder (JDPI-Decoder) Application Signature component of Junos OS's AppID service on SRX Series devices will stop the JDPI-Decoder from identifying dynamic application traffic, allowing an unauthenticated network-based attacker to send traffic to the target device using the JDPI-Decoder, designed to inspect dynamic application traffic and take action upon this traffic, to instead begin to not take action and to pass the traffic through. An example session can be seen by running the following command and evaluating the output. user@device# run show security flow session source-prefix <address/mask> extensive Session ID: <session ID>, Status: Normal, State: Active Policy name: <name of policy> Dynamic application: junos:UNKNOWN, <<<<< LOOK HERE Please note, the JDPI-Decoder and the AppID SigPack are both affected and both must be upgraded along with the operating system to address the matter. By default, none of this is auto-enabled for automatic updates. This issue affects: Juniper Networks any version of the JDPI-Decoder Engine prior to version 5.7.0-47 with the JDPI-Decoder enabled using any version of the AppID SigPack prior to version 1.550.2-31 (SigPack 3533) on Junos OS on SRX Series: All versions prior to 19.1R3-S10; 19.2 versions prior to 19.2R3-S7; 19.3 versions prior to 19.3R3-S8; 19.4 versions prior to 19.4R3-S11; 20.1 version 20.1R1 and later versions prior to 20.2R3-S7; 20.3 version 20.3R1 and later versions prior to 20.4R3-S6; 21.1 versions prior to 21.1R3-S5; 21.2 versions prior to 21.2R3-S4; 21.3 versions prior to 21.3R3-S3; 21.4 versions prior to 21.4R3-S3; 22.1 versions prior to 22.1R3-S1; 22.2 versions prior to 22.2R2-S1, 22.2R3; 22.3 versions prior to 22.3R1-S2, 22.3R2;

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
  • Juniper Appid Service Sigpack

    APP
    Juniper
    < 1.550.2-31
  • Juniper Jdpi Decoder Engine

    APP
    Juniper
    < 5.7.0-47
  • Juniper Junos

    OS
    Juniper
    19.119.219.319.420.120.220.320.421.121.221.321.422.122.222.3
  • Juniper Srx100

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx110

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx1400

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx1500

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx210

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx220

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx240

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx240h2

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx240m

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx300

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx320

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx340

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx3400

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx345

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx3600

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx380

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx4000

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx4100

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx4200

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx4600

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx5000

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx5400

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx550

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx550 Hm

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx550m

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx5600

    HW
    Juniper
    wszystkie wersje
  • Juniper Srx5800

    HW
    Juniper
    wszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2023-36845CRITICAL9.8⚠ KEVten sam produkt

A PHP External Variable Modification vulnerability in J-Web of Juniper Networks Junos OS on EX Series and SR...

CVE-2024-21591CRITICAL9.8PL ✓ten sam produkt

Out-of-bounds Write w J-Web Juniper Junos OS — RCE z uprawnieniami root

CVE-2021-0248CRITICAL10.0ten sam produkt

This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials ...

CVE-2021-0254CRITICAL9.8ten sam produkt

A buffer size validation vulnerability in the overlayd service of Juniper Networks Junos OS may allow an unaut...

CVE-2021-0211CRITICAL10.0ten sam produkt

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Rout...