CVE-2024-39531 — Improper Handling of Values in Networks Junos OS Evolved

CWE-229 — Improper Handling of Values4 documents4 sources

Severity

8.7HIGHNVD

EPSS

0.5%

top 34.17%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Evolved Juniper Junos OS Evolved

Timeline

PublishedJul 11

Description

An Improper Handling of Values vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows a network-based, unauthenticated attacker to cause a Denial-of-Service (DoS). If a value is configured for DDoS bandwidth or burst parameters for any protocol in a queue, all protocols which share the same queue will have their bandwidth or burst value changed to the new value. If, for example, OSPF was configured with a certain bandwidth value, ISIS …

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Affected Packages2 packages

▶CVEListV5juniper_networks/junos_os_evolved22.1 — 22.1R3-S6-EVO+6

▶NVDjuniper/junos_os_evolved< 21.4+7

🔴Vulnerability Details

CVEList

Junos OS Evolved: ACX 7000 Series: Protocol specific DDoS configuration affects other protocols↗2024-07-11

▶

GHSA

GHSA-55g7-m9v7-8rhg: An Improper Handling of Values vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows a ne↗2024-07-11

▶

📋Vendor Advisories

Juniper

CVE-2024-39531: An Improper Handling of Values vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows a ne↗2024-07-11

▶