How severe is CVE-2022-22198?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.5 out of 10.

What type of vulnerability is CVE-2022-22198?

This is classified as CWE-824, which is a common weakness in software security.

CVE-2022-22198

HIGH Year: 2022

CVSS v3 Score

7.5

High

CVSS v2 Score

7.1

High

Weakness Type

CWE-824

View all →

Vulnerability Description

An Access of Uninitialized Pointer vulnerability in the SIP ALG of Juniper Networks Junos OS allows an unauthenticated network-based attacker to cause a Denial of Service (DoS). Continued receipt of these specific packets will cause a sustained Denial of Service condition. On all MX and SRX platforms, if the SIP ALG is enabled, an MS-MPC or MS-MIC, or SPC will crash if it receives a SIP message with a specific contact header format. This issue affects Juniper Networks Junos OS on MX Series and SRX Series: 20.4 versions prior to 20.4R3; 21.1 versions prior to 21.1R2-S1, 21.1R3; 21.2 versions prior to 21.2R2. This issue does not affect versions prior to 20.4R1.

CVE-2016-10447

HIGH

CVSS:7.5(High)

In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9650, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 61...

CWE-8242016

CVE-2018-1000099

HIGH

CVSS:7.5(High)

Teluu PJSIP version 2.7.1 and earlier contains a Access of Null/Uninitialized Pointer vulnerability in pjmedia SDP parsing that can result in Crash. This attack appear to be exploitable via Sending a ...

CWE-8242018

CVE-2018-11803

HIGH

CVSS:7.5(High)

Subversion's mod_dav_svn Apache HTTPD module versions 1.11.0 and 1.10.0 to 1.10.3 will crash after dereferencing an uninitialized pointer if the client omits the root path in a recursive directory lis...

CWE-8242018

CVE-2018-5392

HIGH

CVSS:7.5(High)

mingw-w64 version 5.0.4 by default produces executables that opt in to ASLR, but are not compatible with ASLR. ASLR is an exploit mitigation technique used by modern Windows platforms. For ASLR to fun...

CWE-8242018

CVE-2019-1869

HIGH

CVSS:7.5(High)

A vulnerability in the internal packet-processing functionality of the Cisco StarOS operating system running on virtual platforms could allow an unauthenticated, remote attacker to cause an affected d...

CWE-8242019

CVE-2020-17469

HIGH

CVSS:7.5(High)

An issue was discovered in FNET through 4.6.4. The code for IPv6 fragment reassembly tries to access a previous fragment starting from a network incoming fragment that still doesn't have a reference t...

CWE-8242020

CVE-2022-22198

Vulnerability Description

Related Vulnerabilities

CVE-2016-10447

CVE-2018-1000099

CVE-2018-11803

CVE-2018-5392

CVE-2019-1869

CVE-2020-17469