CVE-2024-39541

Name of the Vulnerable Software and Affected Versions Junos OS versions 22.4 through 22.4R3-S1 Junos OS versions 23.2 through 23.2R2 Junos OS versions 23.4 through 23.4R1-S1, 23.4R2 Junos OS Evolved versions 22.4-EVO through 22.4R3-S2-EVO Junos OS Evolved versions 23.2-EVO through 23.2R2-EVO Junos OS Evolved versions 23.4-EVO through 23.4R1-S1-EVO, 23.4R2-EVO

Description An Improper Handling of Exceptional Conditions issue in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (DoS). This occurs when conflicting information about a node is added to the Traffic Engineering (TE) database and then a subsequent operation attempts to process these, causing rpd to crash and restart.

Recommendations For Junos OS version 22.4, update to version 22.4R3-S1 or later. For Junos OS version 23.2, update to version 23.2R2 or later. For Junos OS version 23.4, update to version 23.4R1-S1 or 23.4R2 or later. For Junos OS Evolved version 22.4-EVO, update to version 22.4R3-S2-EVO or later. For Junos OS Evolved version 23.2-EVO, update to version 23.2R2-EVO or later. For Junos OS Evolved version 23.4-EVO, update to version 23.4R1-S1-EVO or 23.4R2-EVO or later.