What is CVE-2022-22153?

CVE-2022-22153 is a high-severity vulnerability in Juniper Junos, classified under Inefficient Algorithmic Complexity. CVSS score: 7.5/10. Published 2022-01-19.

How severe is CVE-2022-22153?

High severity. CVSS v3 base score is 7.5 out of 10.

Resource exhaustion in Juniper Junos

CVE-2022-22153

An Insufficient Algorithmic Complexity combined with an Allocation of Resources Without Limits or Throttling vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX Series and MX Series with SPC3 allows an u…

EPSS: 0.009 (55.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Juniper Junos — versions 18.2, 18.3, 18.4
Juniper Mx10
Juniper Mx10000
Juniper Mx10003
Juniper Mx10008
Juniper Mx10016
Juniper Mx104
Juniper Mx150
Juniper Mx2008
Juniper Mx2010

Weakness classification (CWE)

References

sirt@juniper.net (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2022-22153?: CVE-2022-22153 is a high-severity vulnerability in Juniper Junos, classified under Inefficient Algorithmic Complexity. CVSS score: 7.5/10. Published 2022-01-19.
How severe is CVE-2022-22153?: High severity. CVSS v3 base score is 7.5 out of 10.