CVE-2024-39518 Junos OS: MX240, MX480, MX960 platforms using MPC10E: Memory leak will be observed when subscribed to a specific subscription on Junos Telemetry Interface

🗓️ 10 Jul 2024 23:07:59Reported by juniperType

Junos OS: Memory leak and DoS on MX platforms with MPC10E due to telemetry interface subscriptio

Reporter	Title	Published	Views	Family All 10
BDU FSTEC	The vulnerability of the Junos Telemetry Interface interface of Juniper Networks’ Junos OS allows a attacker to cause a service failure.	14 Aug 202400:00	–	bdu_fstec
Circl	CVE-2024-39518	11 Jul 202401:35	–	circl
CNNVD	Juniper Networks Junos OS Security Vulnerability	10 Jul 202400:00	–	cnnvd
CVE	CVE-2024-39518	10 Jul 202423:07	–	cve
EUVD	EUVD-2024-38044	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA82982)	10 Jul 202400:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper Junos OS and Junos OS Evolved	12 Jul 202411:43	–	ncsc
NVD	CVE-2024-39518	10 Jul 202423:15	–	nvd
Positive Technologies	PT-2024-5542 · Juniper Networks · Junos	25 Jun 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-39518 Junos OS: MX240, MX480, MX960 platforms using MPC10E: Memory leak will be observed when subscribed to a specific subscription on Junos Telemetry Interface	10 Jul 202423:07	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "MX240 using MPC10E",
      "MX480 using MPC10E",
      "MX960 using MPC10E"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.2R3-S7",
        "status": "affected",
        "version": "21.2R3-S5",
        "versionType": "semver"
      },
      {
        "lessThan": "21.4R3-S6",
        "status": "affected",
        "version": "21.4R3-S4",
        "versionType": "semver"
      },
      {
        "lessThan": "22.2R3-S4",
        "status": "affected",
        "version": "22.2R3",
        "versionType": "semver"
      },
      {
        "lessThan": "22.3R3-S2",
        "status": "affected",
        "version": "22.3R2",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R3",
        "status": "affected",
        "version": "22.4R1",
        "versionType": "semver"
      },
      {
        "lessThan": "23.2R2",
        "status": "affected",
        "version": "23.2R1",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA82982

10 Jul 2024 23:07Current

CVSS 3.17.5

CVSS 48.7

EPSS0.00424

CWE-122