CVE-2024-21604Allocation of Resources Without Limits or Throttling in Networks Junos OS Evolved

CWE-770Allocation of Resources Without Limits or Throttling4 documents4 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 47.92%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OS EvolvedJuniper Junos OS Evolved
Timeline
PublishedJan 12

Description

An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). If a high rate of specific valid packets are processed by the routing engine (RE) this will lead to a loss of connectivity of the RE with other components of the chassis and thereby a complete and persistent system outage. Please note that a carefully designed lo0 firewall filter will block

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5juniper_networks/junos_os_evolved21.2-EVO21.2*-EVO+6
NVDjuniper/junos_os_evolved6 versions+5

🔴Vulnerability Details

2
GHSA
GHSA-h4g9-rx7v-v6rf: An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, ne2024-01-12
CVEList
Junos OS Evolved: A high rate of specific traffic will cause a complete system outage2024-01-12

📋Vendor Advisories

1
Juniper
CVE-2024-21604: An Allocation of Resources Without Limits or Throttling vulnerability in the kernel of Juniper Networks Junos OS Evolved allows an unauthenticated, n2024-01-12
CVE-2024-21604 — HIGH severity | cvebase