CVE-2023-44190

CVSS 3.1 Score 5.4 of 10 (medium)

Details

Published Oct 11, 2023
Updated: Oct 19, 2023
CWE ID 346

Summary

CVE-2023-44190 is an Origin Validation vulnerability in MAC address validation of Juniper Networks Junos OS Evolved on PTX10001, PTX10004, PTX10008, and PTX10016 devices. This vulnerability allows a network-adjacent attacker to bypass MAC address checking, resulting in MAC addresses that are not intended to reach the adjacent LAN being forwarded to the downstream network. The affected products include various versions of Juniper Networks Junos OS Evolved. To remediate this vulnerability, organizations should update their Junos OS Evolved software to versions 21.4R3-S5-EVO, 22.1R3-S4-EVO, 22.2R1-EVO and later, 22.3R2-S2-EVO, 22.3R3-S1-EVO, 22.4R2-S1-EVO, 22.4R3-EVO, 23.2R1-S1-EVO or 23.2R2-EVO where applicable. This vulnerability poses a medium risk as it can lead to congestion and loop in the downstream layer-2 domain connected to the affected device.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-44190 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options