We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Fathom (Privacy friendly web analytics)
Zendesk (Helpdesk and Chat)

Ok

Home | EN
Support
CVE

PUBLISHED

CVE-2024-30409

Junos OS and Junos OS Evolved: Higher CPU consumption on routing engine leads to Denial of Service (DoS).

Assigner	juniper
Reserved	2024-03-26
Published	2024-04-12
Updated	2024-07-11

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in telemetry processing of Juniper Networks Junos OS and Junos OS Evolved allows a network-based authenticated attacker to cause the forwarding information base telemetry daemon (fibtd) to crash, leading to a limited Denial of Service. This issue affects Juniper Networks Junos OS: * from 22.1 before 22.1R1-S2, 22.1R2. Junos OS Evolved: * from 22.1 before 22.1R1-S2-EVO, 22.1R2-EVO.

MEDIUM: 5.3	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
MEDIUM: 6.9	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Problem types

CWE-754: Improper Check for Unusual or Exceptional Conditions

Denial of Service(DoS)

Product status

Default status

unaffected

22.1 before 22.1R1-S2, 22.1R2

affected

Default status

unaffected

22.1-EVO before 22.1R1-S2-EVO, 22.1R2-EVO

affected

Timeline

2024-04-10:

Initial Publication

References

https://supportportal.juniper.net/JSA79099 vendor-advisory

https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N technical-description

cve.org CVE-2024-30409

nvd.nist.gov CVE-2024-30409

Download JSON

https://cve.threatint.com/CVE/CVE-2024-30409

Find us on

Data Privacy
Terms of Use

© Copyright 2024 THREATINT. Made in Cyprus with ❤ + ☼