PT-2024-7397 · Juniper Networks · Junos+1
Published
2024-06-25
·
Updated
2026-01-26
·
CVE-2024-39516
CVSS v4.0
8.7
High
| Vector | AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X |
Name of the Vulnerable Software and Affected Versions:
Junos OS versions prior to 21.4R3-S8
Junos OS versions 22.2 prior to 22.2R3-S5
Junos OS versions 22.3 prior to 22.3R3-S4
Junos OS versions 22.4 prior to 22.4R3-S3
Junos OS versions 23.2 prior to 23.2R2-S2
Junos OS versions 23.4 prior to 23.4R2
Junos OS Evolved versions prior to 21.4R3-S8-EVO
Junos OS Evolved versions 22.2-EVO prior to 22.2R3-S5-EVO
Junos OS Evolved versions 22.3-EVO prior to 22.3R3-S4-EVO
Junos OS Evolved versions 22.4-EVO prior to 22.4R3-S3-EVO
Junos OS Evolved versions 23.2-EVO prior to 23.2R2-S2-EVO
Junos OS Evolved versions 23.4-EVO prior to 23.4R2-EVO
Description:
The issue is related to an Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. This vulnerability allows an unauthenticated network-based attacker to cause the rpd to crash and restart by sending a specifically malformed BGP packet, resulting in a Denial of Service (DoS). The issue affects systems configured with BGP traceoptions enabled or BGP traffic engineering configured and can affect iBGP and eBGP with any address family configured.
Recommendations:
For Junos OS versions prior to 21.4R3-S8, update to version 21.4R3-S8 or later.
For Junos OS versions 22.2 prior to 22.2R3-S5, update to version 22.2R3-S5 or later.
For Junos OS versions 22.3 prior to 22.3R3-S4, update to version 22.3R3-S4 or later.
For Junos OS versions 22.4 prior to 22.4R3-S3, update to version 22.4R3-S3 or later.
For Junos OS versions 23.2 prior to 23.2R2-S2, update to version 23.2R2-S2 or later.
For Junos OS versions 23.4 prior to 23.4R2, update to version 23.4R2 or later.
For Junos OS Evolved versions prior to 21.4R3-S8-EVO, update to version 21.4R3-S8-EVO or later.
For Junos OS Evolved versions 22.2-EVO prior to 22.2R3-S5-EVO, update to version 22.2R3-S5-EVO or later.
For Junos OS Evolved versions 22.3-EVO prior to 22.3R3-S4-EVO, update to version 22.3R3-S4-EVO or later.
For Junos OS Evolved versions 22.4-EVO prior to 22.4R3-S3-EVO, update to version 22.4R3-S3-EVO or later.
For Junos OS Evolved versions 23.2-EVO prior to 23.2R2-S2-EVO, update to version 23.2R2-S2-EVO or later.
For Junos OS Evolved versions 23.4-EVO prior to 23.4R2-EVO, update to version 23.4R2-EVO or later.
As a temporary workaround, consider disabling BGP traceoptions or BGP traffic engineering until a patch is available. Restrict access to the vulnerable module to minimize the risk of exploitation. Avoid using the vulnerable BGP packet until the issue is resolved.
Fix
Out of bounds Read
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos
Junos Evolved