PT-2024-5569 · Juniper Networks · Junos

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 20.4R3-S10 Junos OS versions 21.2 prior to 21.2R3-S7 Junos OS versions 21.4 prior to 21.4R3-S6 Junos OS versions 22.1 prior to 22.1R3-S5 Junos OS versions 22.2 prior to 22.2R3-S3 Junos OS versions 22.3 prior to...

The vulnerability of the flow processing daemon (flowd) in Juniper Networks’ Junos OS routers of the MX series allows a attacker to cause a service failure.

The vulnerability of the flow processing daemon on Juniper Networks’ Junos OS routers of the MX series is related to the operation of data out of the buffer in memory due to improperly implemented URL filtering based on templates. Exploiting this vulnerability can allow a remote attacker to cause...

The vulnerability of the Daemon Routing Protocols (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause service interruptions.

The vulnerability of the Demon Routing Protocols Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to insufficient handling of exceptional states during packet forwarding based on the Class-of-Service CoS-based forwarding mechanism. Exploiting this...

The vulnerability of the Layer-2 Control Protocol Daemon (l2cpd) protocol of LLDP allows a attacker to cause a service failure in Juniper Networks’ Junos OS and Junos OS Evolved operating systems.

The vulnerability of the Layer-2 Control Protocol Daemon l2cpd protocol of the LLDP protocol in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the issue of operations going beyond the buffer in memory when processing LLDP packets. Exploiting this vulnerability can...

The vulnerability of the Packet Forwarding Engine (PFE) in the Junos OS router of the Juniper SRX4600, which allows a attacker to cause a service failure

The vulnerability of the Packet Forwarding Engine PFE mechanism in the Junos OS router Juniper SRX4600 relates to the operation of writing data outside of the buffer in memory. Exploiting this vulnerability allows a malicious actor to cause service interruptions by sending specially crafted netwo...

Unspecified Vulnerability in Juniper Networks Junos OS (CNVD-2024-24977)

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS and Junos OS Evolved that stems from mishandling of an...

The vulnerability of the Forwarding Information Base Telemetry (fibtd) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Forwarding Information Base Telemetry fibtd of Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to insufficient checking of exceptional states. Exploiting this vulnerability can allow a malicious actor to cause service failures...

The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause a service failure.

The vulnerability of the Demon Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to improper syntax validation during input processing. Exploiting this vulnerability can allow a malicious actor to cause service interruptions...

The vulnerability of the Application Layer Gateway module in Juniper Networks’ Junos OS network devices of the SRX 5000 series allows a attacker to cause service interruptions.

The vulnerability of the Application Layer Gateway module in Juniper Networks’ Junos OS networking devices of the SRX 5000 series is related to incorrect buffer size calculations when processing incoming packets. Exploiting this vulnerability can allow a malicious actor to cause service...

The vulnerability of the Daemon Routing Protocols (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to cause service interruptions.

The vulnerability of the Routing Protocol Daemon RPD in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to insufficient validation of input data types during a established BGP session. This occurs due to incorrectly defined Tunnel encapsulation attributes with incorre...

The vulnerability of the NETCONF protocol implementation in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the NETCONF protocol implementation in Juniper Networks’ Junos OS and Junos OS Evolved operating systems is related to the incorrect use of standard permissions. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

The vulnerability of the Class of Service daemon (cosd) in Juniper Networks’ Junos OS-based network devices of the MX series allows a attacker to cause service interruptions.

The vulnerability of the Class of Service daemon cosd in Juniper Networks’ Junos OS operating systems and MX series network devices is related to the process slowdown of the MGD Management Gateway Daemon when processing commands. Exploiting this vulnerability can allow a malicious actor to cause...

Juniper Networks Junos OS 安全漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A security vulnerability exists in Juniper Networks Junos OS and Junos OS Evolved that stems from mishandling of an...

CVE-2024-30397

An Improper Check for Unusual or Exceptional Conditions vulnerability in the the Public Key Infrastructure daemon pkid of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause Denial of Service DoS. The pkid is responsible for the certificate verification. Upon a failed...

CVE-2024-30392

A Stack-based Buffer Overflow vulnerability in Flow Processing Daemon flowd of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause Denial of Service DoS. On all Junos OS MX Series platforms with SPC3 and MS-MPC/-MIC, when URL filtering is enabled and a specific UR...

CVE-2024-30401

An Out-of-bounds Read vulnerability in the advanced forwarding management process aftman of Juniper Networks Junos OS on MX Series with MPC10E, MPC11, MX10K-LC9600 line cards, MX304, and EX9200-15C, may allow an attacker to exploit a stack-based buffer overflow, leading to a reboot of the FPC...

CVE-2024-30398

An Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial of Service DoS. When a high amount of specific traffic is received on a...

CVE-2024-30388

An Improper Isolation or Compartmentalization vulnerability in the Packet Forwarding Engine pfe of Juniper Networks Junos OS on QFX5000 Series and EX Series allows an unauthenticated, adjacent attacker to cause a Denial of Service DoS. If a specific malformed LACP packet is received by a QFX5000...

CVE-2024-30382

An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a network-based, unauthenticated attacker to send a specific routing update, causing an rpd core due to memory corruption, leading to a Denial o...

CVE-2024-30387

A Missing Synchronization vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS on ACX5448 and ACX710 allows an unauthenticated, adjacent attacker to cause a Denial-of-Service DoS. If an interface flaps while the system gathers statistics on that interface, two processes...