CVE-2024-30392 Junos OS: MX Series with SPC3 and MS-MPC/-MIC: When URL filtering is enabled and a specific URL request is received a flowd crash occurs

🗓️ 12 Apr 2024 15:07:48Reported by juniperType

Junos OS MX Series SPC3 MS-MPC/-MIC Flowd Crash DoS Vulnerabilit

Reporter	Title	Published	Views	Family All 10
BDU FSTEC	The vulnerability of the flow processing daemon (flowd) in Juniper Networks’ Junos OS routers of the MX series allows a attacker to cause a service failure.	7 May 202400:00	–	bdu_fstec
CNNVD	Juniper Networks Junos OS 安全漏洞	12 Apr 202400:00	–	cnnvd
CVE	CVE-2024-30392	12 Apr 202415:07	–	cve
EUVD	EUVD-2024-28313	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA79092)	7 Jun 202400:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper JunOS	12 Apr 202400:00	–	ncsc
NVD	CVE-2024-30392	12 Apr 202416:15	–	nvd
OSV	CVE-2024-30392	12 Apr 202416:15	–	osv
Positive Technologies	PT-2024-3313	10 Apr 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-30392 Junos OS: MX Series with SPC3 and MS-MPC/-MIC: When URL filtering is enabled and a specific URL request is received a flowd crash occurs	12 Apr 202415:07	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "MX Series with SPC3 and MS-MPC"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.2R3-S6",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThan": "21.3R3-S5",
        "status": "affected",
        "version": "21.3",
        "versionType": "semver"
      },
      {
        "lessThan": "21.4R3-S5",
        "status": "affected",
        "version": "21.4",
        "versionType": "semver"
      },
      {
        "lessThan": "22.1R3-S3",
        "status": "affected",
        "version": "22.1",
        "versionType": "semver"
      },
      {
        "lessThan": "22.2R3-S1",
        "status": "affected",
        "version": "22.2",
        "versionType": "semver"
      },
      {
        "lessThan": "22.3R2-S2, 22.3R3",
        "status": "affected",
        "version": "22.3",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R2-S1, 22.4R3",
        "status": "affected",
        "version": "22.4",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA79092
first	www.first.org/cvss/calculator/4.0

16 May 2024 20:27Current

7.7High risk

Vulners AI Score7.7

CVSS 3.17.5

CVSS 48.7

EPSS0.00694

CWE-121