CVE-2024-39556

🗓️ 10 Jul 2024 22:38:44Reported by juniperType

A Stack-Based Buffer Overflow vulnerability in Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows a local, low-privileged attacker to execute privileged code or cause limited Denial of Service (DoS) by loading a malicious certificate file through the CLI

Reporter	Title	Published	Views	Family All 8
Circl	CVE-2024-39556	11 Jul 202401:35	–	circl
CNNVD	Juniper Networks Junos OS and Juniper Networks Junos OS Evolved Security Vulnerabilities	10 Jul 202400:00	–	cnnvd
Cvelist	CVE-2024-39556 Junos OS and Junos OS Evolved: Loading a malicious certificate from the CLI may result in a stack-based overflow	10 Jul 202422:38	–	cvelist
EUVD	EUVD-2024-38082	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA83016)	28 Apr 202600:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper Junos OS and Junos OS Evolved	12 Jul 202411:43	–	ncsc
NVD	CVE-2024-39556	10 Jul 202423:15	–	nvd
Vulnrichment	CVE-2024-39556 Junos OS and Junos OS Evolved: Loading a malicious certificate from the CLI may result in a stack-based overflow	10 Jul 202422:38	–	vulnrichment

NVD

Vulners

Vulnrichment

Node

juniper junosRange<21.4

juniper junosMatch21.4-

juniper junosMatch21.4r1

juniper junosMatch21.4r1-s1

juniper junosMatch21.4r1-s2

juniper junosMatch21.4r2

juniper junosMatch21.4r2-s1

juniper junosMatch21.4r2-s2

juniper junosMatch21.4r3

juniper junosMatch21.4r3-s1

juniper junosMatch21.4r3-s2

juniper junosMatch21.4r3-s3

juniper junosMatch21.4r3-s4

juniper junosMatch21.4r3-s5

juniper junosMatch21.4r3-s6

juniper junosMatch22.1-

juniper junosMatch22.1r1

juniper junosMatch22.1r1-s1

juniper junosMatch22.1r1-s2

juniper junosMatch22.1r2

juniper junosMatch22.1r2-s1

juniper junosMatch22.1r2-s2

juniper junosMatch22.1r3

juniper junosMatch22.1r3-s1

juniper junosMatch22.1r3-s2

juniper junosMatch22.1r3-s3

juniper junosMatch22.1r3-s4

juniper junosMatch22.1r3-s5

juniper junosMatch22.2-

juniper junosMatch22.2r1

juniper junosMatch22.2r1-s1

juniper junosMatch22.2r1-s2

juniper junosMatch22.2r2

juniper junosMatch22.2r2-s1

juniper junosMatch22.2r2-s2

juniper junosMatch22.2r3

juniper junosMatch22.2r3-s1

juniper junosMatch22.2r3-s2

juniper junosMatch22.2r3-s3

juniper junosMatch22.3-

juniper junosMatch22.3r1

juniper junosMatch22.3r1-s1

juniper junosMatch22.3r1-s2

juniper junosMatch22.3r2

juniper junosMatch22.3r2-s1

juniper junosMatch22.3r2-s2

juniper junosMatch22.3r3

juniper junosMatch22.3r3-s1

juniper junosMatch22.3r3-s2

juniper junosMatch22.4-

juniper junosMatch22.4r1

juniper junosMatch22.4r1-s1

juniper junosMatch22.4r1-s2

juniper junosMatch22.4r2

juniper junosMatch22.4r2-s1

juniper junosMatch22.4r2-s2

juniper junosMatch22.4r3

juniper junosMatch22.4r3-s1

juniper junosMatch23.2-

juniper junosMatch23.2r1

juniper junosMatch23.2r1-s1

juniper junosMatch23.2r1-s2

juniper junosMatch23.4-

juniper junosMatch23.4r1

juniper junos_os_evolvedRange<21.4

juniper junos_os_evolvedMatch21.4-

juniper junos_os_evolvedMatch21.4r1

juniper junos_os_evolvedMatch21.4r1-s1

juniper junos_os_evolvedMatch21.4r1-s2

juniper junos_os_evolvedMatch21.4r2

juniper junos_os_evolvedMatch21.4r2-s1

juniper junos_os_evolvedMatch21.4r2-s2

juniper junos_os_evolvedMatch21.4r3

juniper junos_os_evolvedMatch21.4r3-s1

juniper junos_os_evolvedMatch21.4r3-s2

juniper junos_os_evolvedMatch21.4r3-s3

juniper junos_os_evolvedMatch21.4r3-s4

juniper junos_os_evolvedMatch21.4r3-s5

juniper junos_os_evolvedMatch21.4r3-s6

juniper junos_os_evolvedMatch22.1-

juniper junos_os_evolvedMatch22.1r1

juniper junos_os_evolvedMatch22.1r1-s1

juniper junos_os_evolvedMatch22.1r1-s2

juniper junos_os_evolvedMatch22.1r2

juniper junos_os_evolvedMatch22.1r2-s1

juniper junos_os_evolvedMatch22.1r3

juniper junos_os_evolvedMatch22.1r3-s1

juniper junos_os_evolvedMatch22.1r3-s2

juniper junos_os_evolvedMatch22.1r3-s3

juniper junos_os_evolvedMatch22.1r3-s4

juniper junos_os_evolvedMatch22.1r3-s5

juniper junos_os_evolvedMatch22.2-

juniper junos_os_evolvedMatch22.2r1

juniper junos_os_evolvedMatch22.2r1-s1

juniper junos_os_evolvedMatch22.2r1-s2

juniper junos_os_evolvedMatch22.2r2

juniper junos_os_evolvedMatch22.2r2-s1

juniper junos_os_evolvedMatch22.2r2-s2

juniper junos_os_evolvedMatch22.2r3

juniper junos_os_evolvedMatch22.2r3-s1

juniper junos_os_evolvedMatch22.2r3-s2

juniper junos_os_evolvedMatch22.2r3-s3

juniper junos_os_evolvedMatch22.3-

juniper junos_os_evolvedMatch22.3r1

juniper junos_os_evolvedMatch22.3r1-s1

juniper junos_os_evolvedMatch22.3r1-s2

juniper junos_os_evolvedMatch22.3r2

juniper junos_os_evolvedMatch22.3r2-s1

juniper junos_os_evolvedMatch22.3r2-s2

juniper junos_os_evolvedMatch22.3r3

juniper junos_os_evolvedMatch22.3r3-s1

juniper junos_os_evolvedMatch22.3r3-s2

juniper junos_os_evolvedMatch22.4-

juniper junos_os_evolvedMatch22.4r1

juniper junos_os_evolvedMatch22.4r1-s1

juniper junos_os_evolvedMatch22.4r1-s2

juniper junos_os_evolvedMatch22.4r2

juniper junos_os_evolvedMatch22.4r2-s1

juniper junos_os_evolvedMatch22.4r2-s2

juniper junos_os_evolvedMatch22.4r3

juniper junos_os_evolvedMatch22.4r3-s1

juniper junos_os_evolvedMatch23.2-

juniper junos_os_evolvedMatch23.2r1

juniper junos_os_evolvedMatch23.2r1-s1

juniper junos_os_evolvedMatch23.2r1-s2

juniper junos_os_evolvedMatch23.4-

juniper junos_os_evolvedMatch23.4r1

[
  {
    "defaultStatus": "unaffected",
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.4R3-S7",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThan": "22.1R3-S6",
        "status": "affected",
        "version": "22.1",
        "versionType": "semver"
      },
      {
        "lessThan": "22.2R3-S4",
        "status": "affected",
        "version": "22.2",
        "versionType": "semver"
      },
      {
        "lessThan": "22.3R3-S3",
        "status": "affected",
        "version": "22.3",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R3-S2",
        "status": "affected",
        "version": "22.4",
        "versionType": "semver"
      },
      {
        "lessThan": "23.2R2",
        "status": "affected",
        "version": "23.2",
        "versionType": "semver"
      },
      {
        "lessThan": "23.4R1-S1, 23.4R2",
        "status": "affected",
        "version": "23.4",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Junos OS Evolved",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.4R3-S7-EVO",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThan": "22.1R3-S6-EVO",
        "status": "affected",
        "version": "22.1-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.2R3-S4-EVO",
        "status": "affected",
        "version": "22.2-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.3R3-S3-EVO",
        "status": "affected",
        "version": "22.3-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R3-S2-EVO",
        "status": "affected",
        "version": "22.4-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "23.2R2-EVO",
        "status": "affected",
        "version": "23.2-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "23.4R1-S1-EVO, 23.4R2-EVO",
        "status": "affected",
        "version": "23.4-EVO",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA83016

07 Feb 2025 20:09Current

6.6Medium risk

Vulners AI Score6.6

CVSS 3.16.4 - 7

CVSS 47.1

EPSS0.00053

SSVC