ГлавнаяУязвимости → CVE-2024-39540
7.5высокая

CVE-2024-39540

Описание

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on SRX Series, and MX Series with SPC3 allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). When an affected device receives specific valid TCP traffic, the pfe crashes and restarts leading to a momentary but complete service outage. This issue affects Junos OS: 21.2 releases from 21.2R3-S5 before 21.2R3-S6. This issue does not affect earlier or later releases.

Затрагиваемое ПО
Juniper JunosJuniper CsrxJuniper Mx240Juniper Mx480Juniper Mx960Juniper Srx100Juniper Srx110Juniper Srx1400Juniper Srx1500Juniper Srx1600Juniper Srx210Juniper Srx220Juniper Srx2300Juniper Srx240Juniper Srx240h2Juniper Srx240mJuniper Srx300Juniper Srx320Juniper Srx340Juniper Srx3400Juniper Srx345Juniper Srx3600Juniper Srx380Juniper Srx4000Juniper Srx4100
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
https://supportportal.juniper.net/JSA83000https://supportportal.juniper.net/JSA83000