PT-2024-28532 · Juniper Networks · Junos+1
Published
2024-07-10
·
Updated
2026-01-22
·
CVE-2024-39560
CVSS v4.0
7.1
High
| Vector | AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:A/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions
Junos OS versions prior to 20.4R3-S9
Junos OS version 21.2
Junos OS versions 21.4 through 21.4R3-S4
Junos OS versions 22.1 through 22.1R3-S4
Junos OS versions 22.2 through 22.2R3-S2
Junos OS versions 22.3 through 22.3R3-S1
Junos OS versions 22.4 through 22.4R2
Junos OS versions 23.2 through 23.2R1
Junos OS Evolved versions prior to 21.4R3-S5-EVO
Junos OS Evolved versions 22.1-EVO through 22.1R3-S4-EVO
Junos OS Evolved versions 22.2-EVO through 22.2R3-S2-EVO
Junos OS Evolved versions 22.3-EVO through 22.3R3-S1-EVO
Junos OS Evolved versions 22.4-EVO through 22.4R2-EVO
Junos OS Evolved versions 23.2-EVO through 23.2R1-EVO
Description
An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a logically adjacent downstream RSVP neighbor to cause kernel memory exhaustion, leading to a kernel crash, resulting in a Denial of Service (DoS). The kernel memory leak and eventual crash will be seen when the downstream RSVP neighbor has a persistent error which will not be corrected. System kernel memory can be monitored through the use of the 'show system kernel memory' command.
Recommendations
For Junos OS versions prior to 20.4R3-S9, update to version 20.4R3-S9 or later.
For Junos OS version 21.2, update to a version outside of the 21.2 series.
For Junos OS versions 21.4 through 21.4R3-S4, update to version 21.4R3-S5 or later.
For Junos OS versions 22.1 through 22.1R3-S4, update to version 22.1R3-S5 or later.
For Junos OS versions 22.2 through 22.2R3-S2, update to version 22.2R3-S3 or later.
For Junos OS versions 22.3 through 22.3R3-S1, update to version 22.3R3-S2 or later.
For Junos OS versions 22.4 through 22.4R2, update to version 22.4R3 or later.
For Junos OS versions 23.2 through 23.2R1, update to version 23.2R2 or later.
For Junos OS Evolved versions prior to 21.4R3-S5-EVO, update to version 21.4R3-S5-EVO or later.
For Junos OS Evolved versions 22.1-EVO through 22.1R3-S4-EVO, update to version 22.1R3-S5-EVO or later.
For Junos OS Evolved versions 22.2-EVO through 22.2R3-S2-EVO, update to version 22.2R3-S3-EVO or later.
For Junos OS Evolved versions 22.3-EVO through 22.3R3-S1-EVO, update to version 22.3R3-S2-EVO or later.
For Junos OS Evolved versions 22.4-EVO through 22.4R2-EVO, update to version 22.4R3-EVO or later.
For Junos OS Evolved versions 23.2-EVO through 23.2R1-EVO, update to version 23.2R2-EVO or later.
Fix
DoS
Improper Handling of Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos
Junos Evolved