CVE-2023-44197 (junos, junos_os_evolved)

An Out-of-Bounds Write vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS).

On all Junos OS and Junos OS Evolved devices an rpd crash and restart can occur while processing BGP route updates received over an established BGP session. This specific issue is observed for BGP routes learned via a peer which is configured with a BGP import policy that has …

attacker bgp crash cve daemon denial of service devices dos juniper juniper networks junos junos os network networks out-of-bounds out-of-bounds write protocol routing service unauthenticated updates vulnerability