CVE-2024-21602 Junos OS Evolved: ACX7024, ACX7100-32C and ACX7100-48L: Traffic stops when a specific IPv4 UDP packet is received by the RE

🗓️ 12 Jan 2024 00:54:08Reported by juniperType

Junos OS Evolved: ACX7024, ACX7100-32C and ACX7100-48L: NULL Pointer Dereference vulnerability causing DoS from specific IPv4 UDP packe

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerability of Juniper Networks Junos OS Evolved routers of the ACX7024, ACX7100-32C, and ACX7100-48L series is related to pointer aliasing errors, which allows a attacker to cause a service failure.	18 Jan 202400:00	–	bdu_fstec
Circl	CVE-2024-21602	12 Jan 202402:26	–	circl
CNNVD	Juniper Networks Junos OS and Junos OS Evolved Code Issue Vulnerability	11 Jan 202400:00	–	cnnvd
CVE	CVE-2024-21602	12 Jan 202400:54	–	cve
EUVD	EUVD-2024-19250	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA75743)	18 Apr 202400:00	–	nessus
NVD	CVE-2024-21602	12 Jan 202401:15	–	nvd
Prion	Null pointer dereference	12 Jan 202401:15	–	prion
Vulnrichment	CVE-2024-21602 Junos OS Evolved: ACX7024, ACX7100-32C and ACX7100-48L: Traffic stops when a specific IPv4 UDP packet is received by the RE	12 Jan 202400:54	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "ACX7024",
      "ACX7100-32C",
      "ACX7100-48L"
    ],
    "product": "Junos OS Evolved",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.4R3-S6-EVO",
        "status": "affected",
        "version": "21.4-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.1R3-S5-EVO",
        "status": "affected",
        "version": "22.1-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.2R2-S1-EVO, 22.2R3-EVO",
        "status": "affected",
        "version": "22.2-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.3R2-EVO",
        "status": "affected",
        "version": "22.3-EVO",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA75743
first	www.first.org/cvss/calculator/4.0

12 Jan 2024 00:54Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.5

EPSS0.00187

CWE-476

junos os acx7024 acx7100-32c acx7100-48l null pointer dereference dos ipv4 udp denial of service