CVE-2024-30401 Junos OS: MX Series and EX9200-15C: Stack-based buffer overflow in aftman

🗓️ 12 Apr 2024 15:26:58Reported by juniperType

Juniper Networks Junos OS on MX Series and EX9200-15C stack-based buffer overflow in aftman leading to FPC reboo

Reporter	Title	Published	Views	Family All 10
BDU FSTEC	The vulnerability of Juniper Networks’ Junos OS operating system in MX and EX9200 devices, related to operations that go beyond the buffer in memory, allows attackers to cause service interruptions.	17 Jul 202400:00	–	bdu_fstec
CNNVD	Juniper Networks Junos OS 安全漏洞	12 Apr 202400:00	–	cnnvd
CVE	CVE-2024-30401	12 Apr 202415:26	–	cve
EUVD	EUVD-2024-28322	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA79110)	11 Apr 202400:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper JunOS	12 Apr 202400:00	–	ncsc
NVD	CVE-2024-30401	12 Apr 202416:15	–	nvd
OSV	CVE-2024-30401	12 Apr 202416:15	–	osv
Positive Technologies	PT-2024-4770	10 Apr 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-30401 Junos OS: MX Series and EX9200-15C: Stack-based buffer overflow in aftman	12 Apr 202415:26	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "MX Series",
      "EX9200-15C"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.2R3-S1",
        "status": "affected",
        "version": "21.2",
        "versionType": "semver"
      },
      {
        "lessThan": "21.4R3",
        "status": "affected",
        "version": "21.4",
        "versionType": "semver"
      },
      {
        "lessThan": "22.1R2",
        "status": "affected",
        "version": "22.1",
        "versionType": "semver"
      },
      {
        "lessThan": "22.2R2",
        "status": "affected",
        "version": "22.2",
        "versionType": "semver"
      },
      {
        "lessThan": "20.3R1",
        "status": "unaffected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "status": "unaffected",
        "version": "20.4"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA79110
first	www.first.org/cvss/calculator/4.0

16 May 2024 18:00Current

6.1Medium risk

Vulners AI Score6.1

CVSS 3.15.9

CVSS 48.2

EPSS0.00581

CWE-125

juniper networks junos os mx series ex9200-15c stack-based buffer overflow aftman fpc reboot out-of-bounds read vulnerability mpc10e mpc11 mx10k-lc9600 mx304 ex9200-15c 21.2 21.4 22.1 22.2 20.3r1 20.4