CVE-2024-39530

Name of the Vulnerable Software and Affected Versions: Junos OS versions 21.4R3 through 21.4R3-S5 Junos OS versions 22.1R3 through 22.1R3-S4 Junos OS versions 22.2R2 through 22.2R3 Junos OS versions 22.3R1 through 22.3R2-S2, 22.3R3 Junos OS versions 22.4R1 through 22.4R2

Description: An Improper Check for Unusual or Exceptional Conditions issue in the chassis management daemon (chassisd) of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). If an attempt is made to access specific sensors on platforms not supporting these sensors, either via GRPC or netconf, chassisd will crash and restart leading to a restart of all FPCs and thereby a complete outage.

Recommendations: For Junos OS version 21.4R3, update to version 21.4R3-S5 or later. For Junos OS version 22.1R3, update to version 22.1R3-S4 or later. For Junos OS version 22.2R2, update to version 22.2R3 or later. For Junos OS version 22.3R1, update to version 22.3R2-S2, 22.3R3 or later. For Junos OS version 22.4R1, update to version 22.4R2 or later. As a temporary workaround, consider restricting access to the chassisd daemon until a patch is available. Avoid using the GRPC or netconf protocols to access specific sensors on platforms not supporting these sensors until the issue is resolved.