PT-2024-4861 · Juniper Networks · Junos
Published
2024-04-10
·
Updated
2024-05-16
·
CVE-2024-30384
CVSS v4.0
6.8
Medium
| Vector | AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions:
Junos OS versions prior to 20.4R3-S10
Junos OS versions 21.2 prior to 21.2R3-S7
Junos OS versions 21.4 prior to 21.4R3-S6
Description:
The issue is related to an Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on EX4300 Series. This vulnerability can be exploited by a locally authenticated attacker with low privileges to cause a Denial-of-Service (DoS). If a specific CLI command is issued, a PFE crash will occur, interrupting traffic forwarding until the system self-recovers.
Recommendations:
For Junos OS versions prior to 20.4R3-S10, update to version 20.4R3-S10 or later.
For Junos OS versions 21.2 prior to 21.2R3-S7, update to version 21.2R3-S7 or later.
For Junos OS versions 21.4 prior to 21.4R3-S6, update to version 21.4R3-S6 or later.
As a temporary workaround, consider avoiding the use of the specific CLI command that causes the PFE crash until a patch is available.
Fix
DoS
Improper Check for Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos