CVE-2023-36841

CVSS Score of 10 (low)

Details

Published Oct 12, 2023
Updated: Oct 17, 2023
CWE ID 400

Summary

CVE-2023-36841 is an Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on MX Series. It allows an unauthenticated network-based attacker to cause an infinite loop, resulting in a Denial of Service (DoS). The vulnerability affects Juniper Networks Junos OS versions prior to 20.4R3-S7, 21.1 version 21.1R1 and later versions, 21.2 versions prior to 21.2R3-S6, 21.3 versions prior to 21.3R3-S5, and other affected versions. The issue occurs when malformed TCP traffic is sent via an interface configured with PPPoE, causing resource exhaustion and requiring a manual restart to recover. This vulnerability poses a high risk as it can disrupt the availability of affected systems and impact the organization's operations.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-36841 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options