Request a Demo
Rewterz
Amadey Botnet – Active IOCs
April 15, 2024
Rewterz
Multiple TP-Link AC1350 Vulnerabilities
April 15, 2024

Multiple Juniper Networks Products Vulnerabilities

Severity

Meduim

Analysis Summary

CVE-2024-21618 CVSS:6.5

Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by improper input validation when LLDP is enabled. By sending a specially crafted LLDP packet, a remote attacker could exploit this vulnerability to cause l2cpd to crash.

CVE-2024-30389 CVSS:5.8

Juniper Networks Junos OS could allow a remote attacker to bypass security restrictions, caused by an incorrect behavior order flaw in the Packet Forwarding Engine (PFE). By sending a specially crafted request, an attacker could exploit this vulnerability to bypass blocking egress traffic in Firewall filter.

CVE-2024-21593 CVSS:6.5

Juniper Networks Junos OS Evolved is vulnerable to a denial of service, caused by improper error handling in the Packet Forwarding Engine (PFE). By sending specially crafted packets, a remote attacker could exploit this vulnerability to cause PFE to crash.

CVE-2024-21605 CVSS:6.5

Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by an exposure of resource to wrong sphere vulnerability in the Packet Forwarding Engine (PFE). By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.

CVE-2024-30387 CVSS:6.5

Juniper Networks Junos OS is vulnerable to a denial of service, caused by a missing synchronization vulnerability in the Packet Forwarding Engine (PFE). By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.

CVE-2024-21610 CVSS:5.3

uniper Networks Junos OS on MX Series is vulnerable to a denial of service, caused by an improper handling of exceptional conditions vulnerability in the Class of Service daemon (cosd). By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.

CVE-2024-30403 CVSS:6.5

Juniper Networks Junos OS Evolved is vulnerable to a denial of service, caused by a NULL pointer dereference flaw in the Packet Forwarding Engine (PFE). By sending specially crafted Layer 2 traffic, a remote attacker could exploit this vulnerability to cause a denial of service condition.

CVE-2024-30390 CVSS:5.3

Juniper Networks Junos OS Evolved is vulnerable to a denial of service, caused by improper restriction of excessive authentication attempts. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition to the management plane.

CVE-2024-21615 CVSS:5

Juniper Networks Junos OS and Junos OS Evolved could allow a local authenticated attacker to obtain sensitive information, caused by an incorrect default permissions vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to access confidential information on the system.

CVE-2024-30401 CVSS:5.9

Juniper Networks Junos OS is vulnerable to a denial of service, caused by an out-of-bounds read vulnerability in the advanced forwarding management process aftman. By sending a specially crafted reuqest, a remote attacker could exploit this vulnerability to cause a reboot of the FPC.

CVE-2024-30384 CVSS:5.5

Juniper Networks Junos OS is vulnerable to a denial of service, caused by improper error handling in the Packet Forwarding Engine (PFE). By sending a specially crafted CLI command, a local authenticated attacker could exploit this vulnerability to cause PFE to crash.

CVE-2024-30380 CVSS:6.5

Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by an improper handling of exceptional conditions vulnerability. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.

CVE-2024-30409 CVSS:4.3

Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by improper error handling in the telemetry processing. By sending specially crafted packets, a remote attacker could exploit this vulnerability to cause the forwarding information base telemetry daemon (fibtd) to crash.

CVE-2024-30386 CVSS:5.3

Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by an use-after-free vulnerability. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.

Impact

  • Denial of Service
  • Security Bypass
  • Information Disclosure

Indicators of Compromise

CVE

  • CVE-2024-21618
  • CVE-2024-30389
  • CVE-2024-21593
  • CVE-2024-21605
  • CVE-2024-30387
  • CVE-2024-21610
  • CVE-2024-30403
  • CVE-2024-30390
  • CVE-2024-21615
  • CVE-2024-30401
  • CVE-2024-30384
  • CVE-2024-30380
  • CVE-2024-30409
  • CVE-2024-30386

Affected Vendors

Juniper

Affected Products

  • Juniper Networks Junos OS
  • Juniper Networks Junos OS Evolved
  • Juniper Networks Junos OS 21.2
  • Juniper Networks Junos OS 21.4
  • Juniper Networks Junos OS Evolved 21.4-EVO
  • Juniper Networks Junos OS 22.1
  • Juniper Networks Junos OS 22.3
  • Juniper Networks Junos OS 22.2
  • Juniper Networks Junos OS Evolved 22.1-EVO
  • Juniper Networks Junos OS Evolved 22.2-EVO
  • Juniper Networks Junos OS 22.4
  • Juniper Networks Junos OS Evolved 22.4-EVO
  • Juniper Networks Junos OS Evolved 22.3-EVO
  • Juniper Networks Junos OS on MX Series
  • Juniper Networks Junos OS on SRX 300 Series

Remediation

Refer to Juniper Networks Security Advisory for patch, upgrade or suggested workaround information.

CVE-2024-21618

CVE-2024-30389

CVE-2024-21593

CVE-2024-21605

CVE-2024-30387

CVE-2024-21610

CVE-2024-30403

CVE-2024-30390

CVE-2024-21615

CVE-2024-30401

CVE-2024-30384

CVE-2024-30380

CVE-2024-30409

CVE-2024-30386