CVE-2024-39541 Junos OS and Junos OS Evolved: Inconsistent information in the TE database can lead to an rpd crash

🗓️ 11 Jul 2024 16:17:20Reported by juniperType

CVE-2024-39541 Junos OS and Junos OS Evolved: Inconsistent information in TE database can lead to rpd crash. Unauthenticated attacker DoS vulnerabilit

Reporter	Title	Published	Views	Family All 11
BDU FSTEC	The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.	17 Jun 202500:00	–	bdu_fstec
Circl	CVE-2024-39541	11 Jul 202420:00	–	circl
CNNVD	Juniper Networks Junos OS and Juniper Networks Junos OS Evolved Security Vulnerabilities	11 Jul 202400:00	–	cnnvd
CVE	CVE-2024-39541	11 Jul 202416:17	–	cve
EUVD	EUVD-2024-38067	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA83001)	10 Jul 202400:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper Junos OS and Junos OS Evolved	12 Jul 202411:43	–	ncsc
NVD	CVE-2024-39541	11 Jul 202417:15	–	nvd
OSV	CVE-2024-39541	11 Jul 202417:15	–	osv
Positive Technologies	PT-2024-28523 · Juniper Networks · Junos Evolved +1	10 Jul 202400:00	–	ptsecurity

[
  {
    "defaultStatus": "unaffected",
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "22.4R3-S1",
        "status": "affected",
        "version": "22.4",
        "versionType": "semver"
      },
      {
        "lessThan": "23.2R2",
        "status": "affected",
        "version": "23.2",
        "versionType": "semver"
      },
      {
        "lessThan": "23.4R1-S1, 23.4R2",
        "status": "affected",
        "version": "23.4",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R1",
        "status": "unaffected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Junos OS Evolved",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "22.4R3-S2-EVO",
        "status": "affected",
        "version": "22.4-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "23.2R2-EVO",
        "status": "affected",
        "version": "23.2-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "23.4R1-S1-EVO, 23.4R2-EVO",
        "status": "affected",
        "version": "23.4-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R1",
        "status": "unaffected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA83001

11 Jul 2024 16:17Current

CVSS 3.16.5

CVSS 47.1

EPSS0.00332

CWE-755

cve-2024-39541 junos os junos os evolved te database rpd crash unauthenticated dos vulnerability