PT-2024-4771 · Juniper Networks · Junos Evolved
Published
2024-04-10
·
Updated
2024-05-16
·
CVE-2024-30403
CVSS v4.0
7.1
High
| Vector | AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions:
Juniper Networks Junos OS Evolved versions prior to 23.2R1-S1-EVO
Juniper Networks Junos OS Evolved version 23.2R2-EVO
Description:
A NULL Pointer Dereference issue in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS). This occurs when Layer 2 traffic is sent through a logical interface and MAC learning happens, followed by an interface flap, which leads to an Advanced Forwarding Toolkit manager core crash and a PFE restart. The crash can reoccur if the same sequence of events happens, resulting in a sustained DoS condition.
Recommendations:
For Juniper Networks Junos OS Evolved versions prior to 23.2R1-S1-EVO, update to version 23.2R1-S1-EVO or later.
For Juniper Networks Junos OS Evolved version 23.2R2-EVO, consider disabling the
evo-aftmand-bt manager as a temporary workaround until a patch is available. Restrict access to logical interfaces to minimize the risk of exploitation. Avoid triggering interface flaps during MAC learning to prevent the PFE restart.Fix
NULL Pointer Dereference
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos Evolved