CVE-2024-30388Improper Isolation or Compartmentalization in Networks Junos OS

CWE-653Improper Isolation or Compartmentalization4 documents4 sources
Severity
7.1HIGHNVD
EPSS
0.1%
top 76.77%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OSJuniper Junos
Timeline
PublishedApr 12

Description

An Improper Isolation or Compartmentalization vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on QFX5000 Series and EX Series allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS). If a specific malformed LACP packet is received by a QFX5000 Series, or an EX4400, EX4100 or EX4650 Series device, an LACP flap will occur resulting in traffic loss. This issue affects Junos OS on QFX5000 Series, and on EX4400, EX4100 or EX4650 Series: * 20

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Affected Packages2 packages

CVEListV5juniper_networks/junos_os20.4R3-S420.4R3-S8+6
NVDjuniper/junos7 versions+6

🔴Vulnerability Details

2
GHSA
GHSA-fwcw-wmg8-r4vq: An Improper Isolation or Compartmentalization vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on QFX5000 Series and E2024-04-12
CVEList
Junos OS: QFX5000 Series and EX Series: Specific malformed LACP packets will cause flaps2024-04-12

📋Vendor Advisories

1
Juniper
CVE-2024-30388: An Improper Isolation or Compartmentalization vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on QFX5000 Series and E2024-04-12
CVE-2024-30388 — Networks Junos OS vulnerability | cvebase