THREATINT

We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Zendesk (Helpdesk and Chat)

Ok

PUBLISHED

CVE-2024-30409

Junos OS and Junos OS Evolved: Higher CPU consumption on routing engine leads to Denial of Service (DoS).

Reserved:2024-03-26
Published:2024-04-12
Updated:2024-05-16

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in telemetry processing of Juniper Networks Junos OS and Junos OS Evolved allows a network-based authenticated attacker to cause the forwarding information base telemetry daemon (fibtd) to crash, leading to a limited Denial of Service.  This issue affects Juniper Networks Junos OS: * from 22.1 before 22.1R1-S2, 22.1R2. Junos OS Evolved:  * from 22.1 before 22.1R1-S2-EVO, 22.1R2-EVO.



MEDIUM: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
MEDIUM: 6.9CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Problem types

CWE-754: Improper Check for Unusual or Exceptional Conditions

Denial of Service(DoS)

Product status

Default status
unaffected

22.1 before 22.1R1-S2, 22.1R2
affected

Default status
unaffected

22.1-EVO before 22.1R1-S2-EVO, 22.1R2-EVO
affected

Timeline

2024-04-10:Initial Publication

References

https://supportportal.juniper.net/JSA79099 vendor-advisory

https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N technical-description

cve.org CVE-2024-30409

nvd.nist.gov CVE-2024-30409

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2024-30409