CVE-2024-21590

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions prior to 21.2R3-S8-EVO Juniper Networks Junos OS versions from 21.4-EVO prior to 21.4R3-S6-EVO Juniper Networks Junos OS versions from 22.2-EVO prior to 22.2R3-S4-EVO Juniper Networks Junos OS versions from 22.3-EVO prior to 22.3R3-S3-EVO Juniper Networks Junos OS versions from 22.4-EVO prior to 22.4R3-EVO Juniper Networks Junos OS versions from 23.2-EVO prior to 23.2R2-EVO Juniper Networks Junos OS versions from 23.4-EVO prior to 23.4R1-S1-EVO

Description An Improper Input Validation issue in the Juniper Tunnel Driver and ICMP module of Juniper Networks Junos OS Evolved allows an unauthenticated attacker within the MPLS administrative domain to send specifically crafted packets to the Routing Engine to cause a Denial of Service. When specifically crafted transit MPLS IPv4 packets are received by the Packet Forwarding Engine, these packets are internally forwarded to the Routing Engine, potentially creating a sustained Denial of Service condition.

Recommendations For versions prior to 21.2R3-S8-EVO, update to version 21.2R3-S8-EVO or later. For versions from 21.4-EVO prior to 21.4R3-S6-EVO, update to version 21.4R3-S6-EVO or later. For versions from 22.2-EVO prior to 22.2R3-S4-EVO, update to version 22.2R3-S4-EVO or later. For versions from 22.3-EVO prior to 22.3R3-S3-EVO, update to version 22.3R3-S3-EVO or later. For versions from 22.4-EVO prior to 22.4R3-EVO, update to version 22.4R3-EVO or later. For versions from 23.2-EVO prior to 23.2R2-EVO, update to version 23.2R2-EVO or later. For versions from 23.4-EVO prior to 23.4R1-S1-EVO, update to version 23.4R1-S1-EVO or later.