THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-30384

Junos OS: EX4300 Series: If a specific CLI command is issued PFE crashes will occur

Reserved:2024-03-26
Published:2024-04-12
Updated:2024-05-16

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on EX4300 Series allows a locally authenticated attacker with low privileges to cause a Denial-of-Service (Dos). If a specific CLI command is issued, a PFE crash will occur. This will cause traffic forwarding to be interrupted until the system self-recovers.  This issue affects Junos OS:  All versions before 20.4R3-S10, 21.2 versions before 21.2R3-S7, 21.4 versions before 21.4R3-S6.



MEDIUM: 5.5CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
MEDIUM: 6.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Problem types

CWE-754 Improper Check for Unusual or Exceptional Conditions

Denial-of-Service (Dos)

Product status

Default status
unaffected

Any version before 20.4R3-S10
affected

21.2 before 21.2R3-S7
affected

21.4 before 21.4R3-S6
affected

References

http://supportportal.juniper.net/JSA79186 vendor-advisory

https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L technical-description

cve.org CVE-2024-30384

nvd.nist.gov CVE-2024-30384

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-30384