CVE-2024-39537 — Improper Restriction of Communication Channel to Intended Endpoints in Networks Junos OS Evolved

CWE-923 — Improper Restriction of Communication Channel to Intended Endpoints4 documents4 sources

Severity

6.9MEDIUMNVD

EPSS

0.3%

top 50.85%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Evolved Juniper Junos OS Evolved

Timeline

PublishedJul 11

Description

An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, network-based attacker to cause a limited information disclosure and availability impact to the device. Due to a wrong initialization, specific processes which should only be able to communicate internally within the device can be reached over the network via open ports. This issue affects Junos OS Evolved on ACX 7000 Series: …

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5juniper_networks/junos_os_evolved22.2-EVO — 22.2R3-S4-EVO+5

▶NVDjuniper/junos_os_evolved< 21.4+6

🔴Vulnerability Details

CVEList

Junos OS Evolved: ACX7000 Series: Ports which have been inadvertently exposed can be reached over the network↗2024-07-11

▶

GHSA

GHSA-8r2p-hq88-fpcf: An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved on ACX 7000 Series allows an↗2024-07-11

▶

📋Vendor Advisories

Juniper

CVE-2024-39537: An Improper Restriction of Communication Channel to Intended Endpoints vulnerability in Juniper Networks Junos OS Evolved on ACX 7000 Series allows an↗2024-07-11

▶