CVE-2023-44190
CVSS 3.1 Score 5.4 of 10 (medium)
Details
Summary
CVE-2023-44190 is an Origin Validation vulnerability in MAC address validation of Juniper Networks Junos OS Evolved on PTX10001, PTX10004, PTX10008, and PTX10016 devices. This vulnerability allows a network-adjacent attacker to bypass MAC address checking, resulting in MAC addresses that are not intended to reach the adjacent LAN being forwarded to the downstream network. The affected products include various versions of Juniper Networks Junos OS Evolved. To remediate this vulnerability, organizations should update their Junos OS Evolved software to versions 21.4R3-S5-EVO, 22.1R3-S4-EVO, 22.2R1-EVO and later, 22.3R2-S2-EVO, 22.3R3-S1-EVO, 22.4R2-S1-EVO, 22.4R3-EVO, 23.2R1-S1-EVO or 23.2R2-EVO where applicable. This vulnerability poses a medium risk as it can lead to congestion and loop in the downstream layer-2 domain connected to the affected device.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Advisories, Assessments, and Mitigations
Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future
- Gain complete coverage of your cyber, third party, and physical attack surface
- Proactively mitigate threats before they turn into costly attacks
- Make fast, effective, data-driven decisions