What is CVE-2023-22405?

CVE-2023-22405 is a medium-severity vulnerability in Juniper Ex4600, classified under CWE-1250. CVSS score: 6.5/10. Published 2023-01-13.

How severe is CVE-2023-22405?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Vulnerability in Juniper Ex4600

CVE-2023-22405

An Improper Preservation of Consistency Between Independent Representations of Shared State vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS allows an adjacent, unauthenticated attacker to cause a Denial of…

EPSS: 0.003 (22.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Juniper Ex4600
Juniper Ex4600-vc
Juniper Ex4650
Juniper Junos — versions 20.2, 20.3, 20.4
Juniper Qfx5100
Juniper Qfx5100-96s
Juniper Qfx5110
Juniper Qfx5120
Juniper Qfx5130
Juniper Qfx5200

Weakness classification (CWE)

CWE-1250

References

sirt@juniper.net (Vendor Advisory)

Frequently asked questions

What is CVE-2023-22405?: CVE-2023-22405 is a medium-severity vulnerability in Juniper Ex4600, classified under CWE-1250. CVSS score: 6.5/10. Published 2023-01-13.
How severe is CVE-2023-22405?: Medium severity. CVSS v3 base score is 6.5 out of 10.