What is CVE-2023-22394?

CVE-2023-22394 is a high-severity vulnerability in Juniper Junos, classified under CWE-911. CVSS score: 7.5/10. Published 2023-01-13.

How severe is CVE-2023-22394?

High severity. CVSS v3 base score is 7.5 out of 10.

Vulnerability in Juniper Junos

CVE-2023-22394

An Improper Handling of Unexpected Data Type vulnerability in the handling of SIP calls in Juniper Networks Junos OS on SRX Series and MX Series platforms allows an attacker to cause a memory leak leading to Denial of Services (DoS). This…

EPSS: 0.006 (44.7th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Juniper Junos — versions 19.3, 19.4, 20.1
Juniper Mx10
Juniper Mx10000
Juniper Mx10003
Juniper Mx10008
Juniper Mx10016
Juniper Mx104
Juniper Mx150
Juniper Mx2008
Juniper Mx2010

Weakness classification (CWE)

CWE-911

References

sirt@juniper.net (Vendor Advisory)

Frequently asked questions

What is CVE-2023-22394?: CVE-2023-22394 is a high-severity vulnerability in Juniper Junos, classified under CWE-911. CVSS score: 7.5/10. Published 2023-01-13.
How severe is CVE-2023-22394?: High severity. CVSS v3 base score is 7.5 out of 10.