PT-2024-7140 · Juniper Networks · Junos
Published
2024-09-25
·
Updated
2026-01-30
·
CVE-2024-47503
CVSS v4.0
7.1
High
| Vector | AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:X/RE:M/U:X |
Name of the Vulnerable Software and Affected Versions
Junos OS versions prior to 21.4R3-S9
Junos OS versions 22.2 prior to 22.2R3-S5
Junos OS versions 22.3 prior to 22.3R3-S4
Junos OS versions 22.4 prior to 22.4R3-S4
Junos OS versions 23.2 prior to 23.2R2-S2
Junos OS versions 23.4 prior to 23.4R2
Junos OS versions 24.2 prior to 24.2R1-S1, 24.2R2
Description
The issue is related to an improper check for unusual or exceptional conditions in the flow processing daemon (flowd) of Juniper Networks Junos OS. This can be exploited by an unauthenticated and logically adjacent attacker to cause a Denial-of-Service (DoS). Specifically, in a multicast scenario, a sequence of specific PIM packets can cause the flowd to crash and restart, leading to a momentary service interruption.
Recommendations
For Junos OS versions prior to 21.4R3-S9, update to version 21.4R3-S9 or later.
For Junos OS versions 22.2 prior to 22.2R3-S5, update to version 22.2R3-S5 or later.
For Junos OS versions 22.3 prior to 22.3R3-S4, update to version 22.3R3-S4 or later.
For Junos OS versions 22.4 prior to 22.4R3-S4, update to version 22.4R3-S4 or later.
For Junos OS versions 23.2 prior to 23.2R2-S2, update to version 23.2R2-S2 or later.
For Junos OS versions 23.4 prior to 23.4R2, update to version 23.4R2 or later.
For Junos OS versions 24.2 prior to 24.2R1-S1, 24.2R2, update to a version later than 24.2R2.
Fix
DoS
Improper Check for Exceptional Conditions
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos