PT-2024-4770 · Juniper Networks · Junos
Published
2024-04-10
·
Updated
2026-01-23
·
CVE-2024-30401
CVSS v4.0
8.2
High
| Vector | AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions:
Junos OS versions 21.2 through 21.2R3-S1
Junos OS versions 21.4 through 21.4R3
Junos OS versions 22.1 through 22.1R2
Junos OS versions 22.2 through 22.2R2
Description:
The issue is related to an out-of-bounds read vulnerability in the advanced forwarding management process
aftman of Juniper Networks Junos OS on MX Series and EX9200 devices. This vulnerability may allow an attacker to exploit a stack-based buffer overflow, leading to a reboot of the FPC. The vulnerability is caused by the interface definition code for aftman reading beyond a buffer boundary.Recommendations:
For Junos OS versions 21.2 through 21.2R3-S1, update to version 21.2R3-S1 or later.
For Junos OS versions 21.4 through 21.4R3, update to version 21.4R3 or later.
For Junos OS versions 22.1 through 22.1R2, update to version 22.1R2 or later.
For Junos OS versions 22.2 through 22.2R2, update to version 22.2R2 or later.
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos