CVE-2024-39518

Name of the Vulnerable Software and Affected Versions Junos OS versions 21.2R3-S5 through 21.2R3-S7 Junos OS versions 21.4R3-S4 through 21.4R3-S6 Junos OS versions 22.2R3 through 22.2R3-S4 Junos OS versions 22.3R2 through 22.3R3-S2 Junos OS versions 22.4R1 through 22.4R3 Junos OS versions 23.2R1 through 23.2R2

Description A Heap-based Buffer Overflow vulnerability in the telemetry sensor process of Juniper Networks Junos OS causes a steady increase in memory utilization, ultimately leading to a Denial of Service. This issue occurs when the device is subscribed to a specific subscription on Junos Telemetry Interface, resulting in a slow memory leak that consumes all resources and makes the device unresponsive. The Heap memory utilization can be monitored using the command show system processes extensive, and the memory utilization of the specific sensor can be monitored using the command show system info | match sensord.

Recommendations For versions 21.2R3-S5 through 21.2R3-S7, update to version 21.2R3-S7 or later. For versions 21.4R3-S4 through 21.4R3-S6, update to version 21.4R3-S6 or later. For versions 22.2R3 through 22.2R3-S4, update to version 22.2R3-S4 or later. For versions 22.3R2 through 22.3R3-S2, update to version 22.3R3-S2 or later. For versions 22.4R1 through 22.4R3, update to version 22.4R3 or later. For versions 23.2R1 through 23.2R2, update to version 23.2R2 or later.