CVE-2024-39513

Published: Jul 10, 2024Modified: Feb 7, 2025

6.8

Vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:A/V:X/RE:X/U:X

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:A/V:X/RE:X/U:XShow less

Source: sirt@juniper.net (Secondary)

Description

An Improper Input Validation vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved allows a local, low-privileged attacker to cause a Denial of Service (DoS). When a specific "clear" command is run, the Advanced Forwarding Toolkit manager (evo-aftmand-bt or evo-aftmand-zx) crashes and restarts. The crash impacts all traffic going through the FPCs, causing a DoS. Running the command repeatedly leads to a sustained DoS condition. This issue affects Junos OS Evolved: * All versions before 20.4R3-S9-EVO, * from 21.2-EVO before 21.2R3-S7-EVO, * from 21.3-EVO before 21.3R3-S5-EVO, * from 21.4-EVO before 21.4R3-S6-EVO, * from 22.1-EVO before 22.1R3-S4-EVO, * from 22.2-EVO before 22.2R3-S3-EVO, * from 22.3-EVO before 22.3R3-S3-EVO, * from 22.4-EVO before 22.4R3-EVO, * from 23.2-EVO before 23.2R2-EVO.

Affected (97)

Products: Juniper: Junos Os Evolved

Juniper

1 product

Junos Os Evolved

Configuration A

97 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos Os Evolved	Before 20.4
Juniper Junos Os Evolved	Version 20.4
Juniper Junos Os Evolved	Version 20.4 r1-s1
Juniper Junos Os Evolved	Version 20.4 r1-s2
Juniper Junos Os Evolved	Version 20.4 r1
Juniper Junos Os Evolved	Version 20.4 r2-s1
Juniper Junos Os Evolved	Version 20.4 r2-s2
Juniper Junos Os Evolved	Version 20.4 r2-s3
Juniper Junos Os Evolved	Version 20.4 r2
Juniper Junos Os Evolved	Version 20.4 r3-s1
Juniper Junos Os Evolved	Version 20.4 r3-s2
Juniper Junos Os Evolved	Version 20.4 r3-s3
Juniper Junos Os Evolved	Version 20.4 r3-s4
Juniper Junos Os Evolved	Version 20.4 r3-s5
Juniper Junos Os Evolved	Version 20.4 r3-s6
Juniper Junos Os Evolved	Version 20.4 r3-s7
Juniper Junos Os Evolved	Version 20.4 r3-s8
Juniper Junos Os Evolved	Version 20.4 r3
Juniper Junos Os Evolved	Version 21.2
Juniper Junos Os Evolved	Version 21.2 r1-s1
Juniper Junos Os Evolved	Version 21.2 r1-s2
Juniper Junos Os Evolved	Version 21.2 r1
Juniper Junos Os Evolved	Version 21.2 r2-s1
Juniper Junos Os Evolved	Version 21.2 r2-s2
Juniper Junos Os Evolved	Version 21.2 r2
Juniper Junos Os Evolved	Version 21.2 r3-s1
Juniper Junos Os Evolved	Version 21.2 r3-s2
Juniper Junos Os Evolved	Version 21.2 r3-s3
Juniper Junos Os Evolved	Version 21.2 r3-s4
Juniper Junos Os Evolved	Version 21.2 r3-s5
Juniper Junos Os Evolved	Version 21.2 r3-s6
Juniper Junos Os Evolved	Version 21.2 r3
Juniper Junos Os Evolved	Version 21.3
Juniper Junos Os Evolved	Version 21.3 r1-s1
Juniper Junos Os Evolved	Version 21.3 r1
Juniper Junos Os Evolved	Version 21.3 r2-s1
Juniper Junos Os Evolved	Version 21.3 r2-s2
Juniper Junos Os Evolved	Version 21.3 r2
Juniper Junos Os Evolved	Version 21.3 r3-s1
Juniper Junos Os Evolved	Version 21.3 r3-s2
Juniper Junos Os Evolved	Version 21.3 r3-s3
Juniper Junos Os Evolved	Version 21.3 r3-s4
Juniper Junos Os Evolved	Version 21.3 r3
Juniper Junos Os Evolved	Version 21.4
Juniper Junos Os Evolved	Version 21.4 r1-s1
Juniper Junos Os Evolved	Version 21.4 r1-s2
Juniper Junos Os Evolved	Version 21.4 r1
Juniper Junos Os Evolved	Version 21.4 r2-s1
Juniper Junos Os Evolved	Version 21.4 r2-s2
Juniper Junos Os Evolved	Version 21.4 r2
Juniper Junos Os Evolved	Version 21.4 r3-s1
Juniper Junos Os Evolved	Version 21.4 r3-s2
Juniper Junos Os Evolved	Version 21.4 r3-s3
Juniper Junos Os Evolved	Version 21.4 r3-s4
Juniper Junos Os Evolved	Version 21.4 r3-s5
Juniper Junos Os Evolved	Version 21.4 r3
Juniper Junos Os Evolved	Version 22.1
Juniper Junos Os Evolved	Version 22.1 r1-s1
Juniper Junos Os Evolved	Version 22.1 r1-s2
Juniper Junos Os Evolved	Version 22.1 r1
Juniper Junos Os Evolved	Version 22.1 r2-s1
Juniper Junos Os Evolved	Version 22.1 r2
Juniper Junos Os Evolved	Version 22.1 r3-s1
Juniper Junos Os Evolved	Version 22.1 r3-s2
Juniper Junos Os Evolved	Version 22.1 r3-s3
Juniper Junos Os Evolved	Version 22.1 r3
Juniper Junos Os Evolved	Version 22.2
Juniper Junos Os Evolved	Version 22.2 r1-s1
Juniper Junos Os Evolved	Version 22.2 r1-s2
Juniper Junos Os Evolved	Version 22.2 r1
Juniper Junos Os Evolved	Version 22.2 r2-s1
Juniper Junos Os Evolved	Version 22.2 r2-s2
Juniper Junos Os Evolved	Version 22.2 r2
Juniper Junos Os Evolved	Version 22.2 r3-s1
Juniper Junos Os Evolved	Version 22.2 r3-s2
Juniper Junos Os Evolved	Version 22.2 r3
Juniper Junos Os Evolved	Version 22.3
Juniper Junos Os Evolved	Version 22.3 r1-s1
Juniper Junos Os Evolved	Version 22.3 r1-s2
Juniper Junos Os Evolved	Version 22.3 r1
Juniper Junos Os Evolved	Version 22.3 r2-s1
Juniper Junos Os Evolved	Version 22.3 r2-s2
Juniper Junos Os Evolved	Version 22.3 r2
Juniper Junos Os Evolved	Version 22.3 r3-s1
Juniper Junos Os Evolved	Version 22.3 r3-s2
Juniper Junos Os Evolved	Version 22.3 r3
Juniper Junos Os Evolved	Version 22.4
Juniper Junos Os Evolved	Version 22.4 r1-s1
Juniper Junos Os Evolved	Version 22.4 r1-s2
Juniper Junos Os Evolved	Version 22.4 r1
Juniper Junos Os Evolved	Version 22.4 r2-s1
Juniper Junos Os Evolved	Version 22.4 r2-s2
Juniper Junos Os Evolved	Version 22.4 r2
Juniper Junos Os Evolved	Version 23.2
Juniper Junos Os Evolved	Version 23.2 r1-s1
Juniper Junos Os Evolved	Version 23.2 r1-s2
Juniper Junos Os Evolved	Version 23.2 r1

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (2)

https://supportportal.juniper.net/JSA82978

Source: sirt@juniper.net

Vendor Advisory

https://supportportal.juniper.net/JSA82978

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.