CVE-2024-39531

Published: Jul 11, 2024Modified: Jan 22, 2026

8.7

Vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less

Source: sirt@juniper.net (Secondary)

Description

An Improper Handling of Values vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows a network-based, unauthenticated attacker to cause a Denial-of-Service (DoS). If a value is configured for DDoS bandwidth or burst parameters for any protocol in a queue, all protocols which share the same queue will have their bandwidth or burst value changed to the new value. If, for example, OSPF was configured with a certain bandwidth value, ISIS would also be limited to this value. So inadvertently either the control plane is open for a high level of specific traffic which was supposed to be limited to a lower value, or the limit for a certain protocol is so low that chances to succeed with a volumetric DoS attack are significantly increased. This issue affects Junos OS Evolved on ACX 7000 Series: * All versions before 21.4R3-S7-EVO, * 22.1 versions before 22.1R3-S6-EVO, * 22.2 versions before 22.2R3-S3-EVO, * 22.3 versions before 22.3R3-S3-EVO, * 22.4 versions before 22.4R3-S2-EVO, * 23.2 versions before 23.2R2-EVO, * 23.4 versions before 23.4R1-S1-EVO, 23.4R2-EVO.

Affected (63)

Products: Juniper: Junos Os Evolved

Juniper

1 product

Junos Os Evolved

Configuration A

63 vulnerable · 6 platform

Vulnerable Software	Affected Versions
Juniper Junos Os Evolved	Before 21.4
Juniper Junos Os Evolved	Version 21.4
Juniper Junos Os Evolved	Version 21.4 r1-s1
Juniper Junos Os Evolved	Version 21.4 r1-s2
Juniper Junos Os Evolved	Version 21.4 r1
Juniper Junos Os Evolved	Version 21.4 r2-s1
Juniper Junos Os Evolved	Version 21.4 r2-s2
Juniper Junos Os Evolved	Version 21.4 r2
Juniper Junos Os Evolved	Version 21.4 r3-s1
Juniper Junos Os Evolved	Version 21.4 r3-s2
Juniper Junos Os Evolved	Version 21.4 r3-s3
Juniper Junos Os Evolved	Version 21.4 r3-s4
Juniper Junos Os Evolved	Version 21.4 r3-s5
Juniper Junos Os Evolved	Version 21.4 r3-s6
Juniper Junos Os Evolved	Version 21.4 r3
Juniper Junos Os Evolved	Version 22.1
Juniper Junos Os Evolved	Version 22.1 r1-s1
Juniper Junos Os Evolved	Version 22.1 r1-s2
Juniper Junos Os Evolved	Version 22.1 r1
Juniper Junos Os Evolved	Version 22.1 r2-s1
Juniper Junos Os Evolved	Version 22.1 r2
Juniper Junos Os Evolved	Version 22.1 r3-s1
Juniper Junos Os Evolved	Version 22.1 r3-s2
Juniper Junos Os Evolved	Version 22.1 r3-s3
Juniper Junos Os Evolved	Version 22.1 r3-s4
Juniper Junos Os Evolved	Version 22.1 r3-s5
Juniper Junos Os Evolved	Version 22.1 r3
Juniper Junos Os Evolved	Version 22.2
Juniper Junos Os Evolved	Version 22.2 r1-s1
Juniper Junos Os Evolved	Version 22.2 r1-s2
Juniper Junos Os Evolved	Version 22.2 r1
Juniper Junos Os Evolved	Version 22.2 r2-s1
Juniper Junos Os Evolved	Version 22.2 r2-s2
Juniper Junos Os Evolved	Version 22.2 r2
Juniper Junos Os Evolved	Version 22.2 r3-s1
Juniper Junos Os Evolved	Version 22.2 r3-s2
Juniper Junos Os Evolved	Version 22.2 r3
Juniper Junos Os Evolved	Version 22.3
Juniper Junos Os Evolved	Version 22.3 r1-s1
Juniper Junos Os Evolved	Version 22.3 r1-s2
Juniper Junos Os Evolved	Version 22.3 r1
Juniper Junos Os Evolved	Version 22.3 r2-s1
Juniper Junos Os Evolved	Version 22.3 r2-s2
Juniper Junos Os Evolved	Version 22.3 r2
Juniper Junos Os Evolved	Version 22.3 r3-s1
Juniper Junos Os Evolved	Version 22.3 r3-s2
Juniper Junos Os Evolved	Version 22.3 r3
Juniper Junos Os Evolved	Version 22.4
Juniper Junos Os Evolved	Version 22.4 r1-s1
Juniper Junos Os Evolved	Version 22.4 r1-s2
Juniper Junos Os Evolved	Version 22.4 r1
Juniper Junos Os Evolved	Version 22.4 r2-s1
Juniper Junos Os Evolved	Version 22.4 r2-s2
Juniper Junos Os Evolved	Version 22.4 r2
Juniper Junos Os Evolved	Version 22.4 r3-s1
Juniper Junos Os Evolved	Version 22.4 r3
Juniper Junos Os Evolved	Version 23.2
Juniper Junos Os Evolved	Version 23.2 r1-s1
Juniper Junos Os Evolved	Version 23.2 r1-s2
Juniper Junos Os Evolved	Version 23.2 r1
Juniper Junos Os Evolved	Version 23.4
Juniper Junos Os Evolved	Version 23.4 r1
Juniper Junos Os Evolved	Version 23.4 r2

Running on/with	Platform Versions
Juniper Acx7020	All versions
Juniper Acx7024	All versions
Juniper Acx7024x	All versions
Juniper Acx7100	All versions
Juniper Acx7300	All versions
Juniper Acx7509	All versions

Related CWEs

CWE-229

Improper Handling of Values

The product does not properly handle when the expected number of values for parameters, fields, or arguments is not provided in input, or if those values are undefined.

References (2)

https://supportportal.juniper.net/JSA82991

Source: sirt@juniper.net

Vendor Advisory

https://supportportal.juniper.net/JSA82991

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.