JuniperVULNRICHMENT:CVE-2024-39549CVE-2024-39549 Junos OS and Junos OS Evolved: Receipt of malformed BGP path attributes leads to a memory leak
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/SC:N/VI:N/SI:N/VA:H/SA:L/R:U
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial
A Missing Release of Memory after Effective Lifetime vulnerability in the routing process daemon (rpd) ofย Juniper Networks Junos OS and Junos OS Evolved allows an attacker to send a malformed BGP Path attribute update which allocates memory used to log the bad path attribute. This memory is not properly freed in all circumstances, leading to a Denial of Service (DoS).
Consumed memory can be freed by manually restarting Routing Protocol Daemon (rpd).
Memory utilization could be monitored by:ย
user@host> show system memory or show system monitor memory status
This issue affects:
Junos OS:ย * All versions before 21.2R3-S8,
-
from 21.4 before 21.4R3-S8,
-
from 22.2 before 22.2R3-S4,
-
from 22.3 before 22.3R3-S3,
-
from 22.4 before 22.4R3-S3,
-
from 23.2 before 23.2R2-S1,
-
from 23.4 before 23.4R1-S2, 23.4R2,
-
from 24.2 beforeย 24.2R2-EVO.
Junos OS Evolved:
-
All versions before 21.2R3-S8-EVO,
-
from 21.4 before 21.4R3-S8-EVO,
-
from 22.2 before 22.2R3-S4-EVO,
-
from 22.3 before 22.3R3-S3-EVO,
-
from 22.4 before 22.4R3-S3-EVO,
-
from 23.2 before 23.2R2-S1-EVO,
-
from 23.4 before 23.4R1-S2, 23.4R2,
-
from 24.2 before 24.2R2-EVO.
CNA Affected
[
{
"vendor": "Juniper Networks",
"product": "Junos OS",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "21.2R3-S8",
"versionType": "semver"
},
{
"status": "affected",
"version": "21.4",
"lessThan": "21.4R3-S8",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.2",
"lessThan": "22.2R3-S4",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.3",
"lessThan": "22.3R3-S3",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.4",
"lessThan": "22.4R3-S3",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.2",
"lessThan": "23.2R2-S1",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.4",
"lessThan": "23.4R1-S2, 23.4R2",
"versionType": "semver"
},
{
"status": "affected",
"version": "24.2",
"lessThan": "24.2R2",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
},
{
"vendor": "Juniper Networks",
"product": "Junos OS Evolved",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "21.2R3-S8-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "21.4",
"lessThan": "21.4R3-S8-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.2",
"lessThan": "22.2R3-S4-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.3",
"lessThan": "22.3R3-S3-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.4",
"lessThan": "22.4R3-S3-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.2",
"lessThan": "23.2R2-S1-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.4",
"lessThan": "23.4R1-S2-EVO, 23.4R2-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "24.2",
"lessThan": "24.2R2-EVO",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:o:juniper:junos_os:*:*:*:*:*:*:*:*"
],
"vendor": "juniper",
"product": "junos_os",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "21.2R3-S8",
"versionType": "semver"
},
{
"status": "affected",
"version": "21.4",
"lessThan": "21.4R3-S8",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.2",
"lessThan": "22.2R3-S4",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.3",
"lessThan": "22.3R3-S3",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.4",
"lessThan": "22.4R3-S3",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.2",
"lessThan": "23.2R2-S1",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.4",
"lessThan": "23.4R1-S2",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.4",
"lessThan": "23.4R2",
"versionType": "semver"
},
{
"status": "affected",
"version": "24.2",
"lessThan": "24.2R2",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
},
{
"cpes": [
"cpe:2.3:o:juniper:junos_os_evolved:*:*:*:*:*:*:*:*"
],
"vendor": "juniper",
"product": "junos_os_evolved",
"versions": [
{
"status": "affected",
"version": "0",
"lessThan": "21.2R3-S8-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "21.4",
"lessThan": "21.4R3-S8-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.2",
"lessThan": "22.2R3-S4-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.3",
"lessThan": "22.3R3-S3-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "22.4",
"lessThan": "22.4R3-S3-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.2",
"lessThan": "23.2R2-S1-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.4",
"lessThan": "23.4R1-S2-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "23.4",
"lessThan": "23.4R2-EVO",
"versionType": "semver"
},
{
"status": "affected",
"version": "24.2",
"lessThan": "24.2R2-EVO",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]References
Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CVSS4
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/SC:N/VI:N/SI:N/VA:H/SA:L/R:U
SSVC
Exploitation
none
Automatable
yes
Technical Impact
partial