CVE-2024-39526

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 21.2R3-S7 Junos OS versions from 21.4 before 21.4R3-S6 Junos OS versions from 22.2 before 22.2R3-S3 Junos OS version 22.3 Junos OS versions from 22.4 before 22.4R3 Junos OS versions from 23.2 before 23.2R2 Junos OS Evolved versions from 19.3R1-EVO before 21.2R3-S8-EVO Junos OS Evolved versions from 21.4-EVO before 21.4R3-S7-EVO Junos OS Evolved versions from 22.1-EVO before 22.1R3-S6-EVO Junos OS Evolved versions from 22.2-EVO before 22.2R3-S5-EVO Junos OS Evolved versions from 22.3-EVO before 22.3R3-S3-EVO Junos OS Evolved versions from 22.4-EVO before 22.4R3-S1-EVO Junos OS Evolved versions from 23.2-EVO before 23.2R2-S2-EVO Junos OS Evolved versions from 23.4-EVO before 23.4R2-EVO

Description An Improper Handling of Exceptional Conditions vulnerability in packet processing allows an attacker sending malformed DHCP packets to cause ingress packet processing to stop, leading to a Denial of Service (DoS). This issue only occurs if DHCP snooping is enabled. The vulnerability can be detected using specific commands that display the interface status going down.

Recommendations For Junos OS versions prior to 21.2R3-S7, update to version 21.2R3-S7 or later. For Junos OS versions from 21.4 before 21.4R3-S6, update to version 21.4R3-S6 or later. For Junos OS versions from 22.2 before 22.2R3-S3, update to version 22.2R3-S3 or later. For Junos OS version 22.3, update to a version later than 22.3. For Junos OS versions from 22.4 before 22.4R3, update to version 22.4R3 or later. For Junos OS versions from 23.2 before 23.2R2, update to version 23.2R2 or later. For Junos OS Evolved versions from 19.3R1-EVO before 21.2R3-S8-EVO, update to version 21.2R3-S8-EVO or later. For Junos OS Evolved versions from 21.4-EVO before 21.4R3-S7-EVO, update to version 21.4R3-S7-EVO or later. For Junos OS Evolved versions from 22.1-EVO before 22.1R3-S6-EVO, update to version 22.1R3-S6-EVO or later. For Junos OS Evolved versions from 22.2-EVO before 22.2R3-S5-EVO, update to version 22.2R3-S5-EVO or later. For Junos OS Evolved versions from 22.3-EVO before 22.3R3-S3-EVO, update to version 22.3R3-S3-EVO or later. For Junos OS Evolved versions from 22.4-EVO before 22.4R3-S1-EVO, update to version 22.4R3-S1-EVO or later. For Junos OS Evolved versions from 23.2-EVO before 23.2R2-S2-EVO, update to version 23.2R2-S2-EVO or later. For Junos OS Evolved versions from 23.4-EVO before 23.4R2-EVO, update to version 23.4R2-EVO or later.