CVE-2024-21593 Junos OS: MX Series with MPC10, MPC11, LC9600, and MX304: A specific MPLS packet will cause a PFE crash

🗓️ 12 Apr 2024 14:54:08Reported by juniperType

Junos OS PFE crash due to specific MPLS packe

Reporter	Title	Published	Views	Family All 10
BDU FSTEC	The vulnerability of the Packet Forwarding Engine (PFE) in Juniper Networks’ Junos routers of the MX series allows a attacker to cause a service failure.	19 Apr 202400:00	–	bdu_fstec
CNNVD	Juniper Networks Junos OS 安全漏洞	12 Apr 202400:00	–	cnnvd
CVE	CVE-2024-21593	12 Apr 202414:54	–	cve
EUVD	EUVD-2024-19241	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA75732)	5 Jul 202400:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper JunOS	12 Apr 202400:00	–	ncsc
NVD	CVE-2024-21593	12 Apr 202415:15	–	nvd
OSV	CVE-2024-21593	12 Apr 202415:15	–	osv
Positive Technologies	PT-2024-2887	10 Apr 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-21593 Junos OS: MX Series with MPC10, MPC11, LC9600, and MX304: A specific MPLS packet will cause a PFE crash	12 Apr 202414:54	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "MX Series with MPC10",
      "MPC11",
      "LC9600",
      "MX304"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.4R3-S5",
        "status": "affected",
        "version": "21.4R3",
        "versionType": "semver"
      },
      {
        "status": "unaffected",
        "version": "22.1"
      },
      {
        "lessThan": "22.2R3-S2",
        "status": "affected",
        "version": "22.2R2",
        "versionType": "semver"
      },
      {
        "lessThan": "22.3R2-S2",
        "status": "affected",
        "version": "22.3R1",
        "versionType": "semver"
      },
      {
        "lessThan": "22.3R3-S1",
        "status": "affected",
        "version": "22.3R3",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R2-S2, 22.4R3",
        "status": "affected",
        "version": "22.4R1",
        "versionType": "semver"
      },
      {
        "lessThan": "23.2R1-S1, 23.2R2",
        "status": "affected",
        "version": "23.2",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
first	www.first.org/cvss/calculator/4.0
supportportal	www.supportportal.juniper.net/JSA75732

16 May 2024 20:06Current

6.7Medium risk

Vulners AI Score6.7

CVSS 3.16.5

CVSS 47.1

EPSS0.00295

CWE-703