#VU94347 Improper handling of values in Junos OS Evolved - CVE-2024-39531

Cybersecurity Help s.r.o.

Published: 2024-07-15

Vulnerability identifier: #VU94347

Vulnerability risk: Medium

CVSSv4.0: 6.6 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2024-39531

CWE-ID: CWE-229

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Junos OS Evolved
Operating systems & Components / Operating system

Vendor: Juniper Networks, Inc.

Description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper handling of values error in the Packet Forwarding Engine (PFE). A remote non-authenticated attacker can cause a Denial-of-Service (DoS).

If a value is configured for DDoS bandwidth or burst parameters for any protocol in a queue, all protocols which share the same queue will have their bandwidth or burst value changed to the new value.

If, for example, OSPF was configured with a certain bandwidth value, ISIS would also be limited to this value.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Junos OS Evolved: 21.4R1-EVO - 21.4R3-S6-EVO, 22.1-EVO - 22.1R3-S5-EVO, 22.2-EVO - 22.2R3-S2-EVO, 22.3R1-EVO - 22.3R3-S2-EVO, 22.4R1-EVO - 22.4R3-S1-EVO, 23.2R1-EVO - 23.2R1-S2-EVO

External links
https://supportportal.juniper.net/s/article/2024-07-Security-Bulletin-Junos-OS-Evolved-ACX7000-Series-Protocol-specific-DDoS-configuration-affects-other-protocols-CVE-2024-39531

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Denial of service in Junos OS Evolved PFE