CVE-2024-21590 — Improper Input Validation in Networks Junos OS Evolved

CWE-20 — Improper Input Validation4 documents4 sources

Severity

7.1HIGHNVD

EPSS

0.0%

top 87.79%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Evolved Juniper Junos OS Evolved

Timeline

PublishedApr 12

Description

An Improper Input Validation vulnerability in Juniper Tunnel Driver (jtd) and ICMP module of Juniper Networks Junos OS Evolved allows an unauthenticated attacker within the MPLS administrative domain to send specifically crafted packets to the Routing Engine (RE) to cause a Denial of Service (DoS). When specifically crafted transit MPLS IPv4 packets are received by the Packet Forwarding Engine (PFE), these packets are internally forwarded to the RE. Continued receipt of these packets may create…

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5juniper_networks/junos_os_evolved21.4-EVO — 21.4R3-S6-EVO+6

▶NVDjuniper/junos_os_evolved21.2+7

🔴Vulnerability Details

GHSA

GHSA-53r8-h9fr-mwc7: An Improper Input Validation vulnerability in Juniper Tunnel Driver (jtd) and ICMP module of Juniper Networks Junos OS Evolved allows an unauthenticat↗2024-04-12

▶

CVEList

Junos OS Evolved: Packets which are not destined to the device can reach the RE↗2024-04-12

▶

📋Vendor Advisories

Juniper

CVE-2024-21590: An Improper Input Validation vulnerability in Juniper Tunnel Driver (jtd) and ICMP module of Juniper Networks Junos OS Evolved allows an unauthenticat↗2024-04-12

▶