CVE-2024-47505 — Allocation of Resources Without Limits or Throttling in Networks Junos OS Evolved

CWE-770 — Allocation of Resources Without Limits or Throttling4 documents4 sources

Severity

7.1HIGHNVD

EPSS

0.1%

top 67.47%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Evolved Juniper Junos OS Evolved

Timeline

PublishedOct 11

Description

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service (DoS).When specific SNMP GET operations or specific low-priviledged CLI commands are executed, a GUID resource leak will occur, eventually leading to exhaustion and resulting in FPCs to hang. Affected FPCs need to be manually restarted to recover. …

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Affected Packages2 packages

▶CVEListV5juniper_networks/junos_os_evolved21.4 — 21.4R3-S7-EVO+6

▶NVDjuniper/junos_os_evolved< 21.4+5

🔴Vulnerability Details

CVEList

Junos OS Evolved: Specific low privileged CLI commands and SNMP GET requests can trigger a resource leak #1↗2024-10-11

▶

GHSA

GHSA-855m-m4qc-g677: An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved↗2024-10-11

▶

📋Vendor Advisories

Juniper

CVE-2024-47505: An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved↗2024-10-11

▶