Severity
Medium
Analysis Summary
CVE-2024-39513 CVSS:5.5
Juniper Networks Junos OS Evolved is vulnerable to a denial of service, caused by an improper input validation vulnerability in the Packet Forwarding Engine (PFE). By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service.
CVE-2024-39561 CVSS:5.8
Juniper Networks Junos OS could allow a remote attacker to bypass security restrictions, caused by improper check for unusual or exceptional conditions in the flow daemon (flowd). By sending specially crafted TCP packets with SYN/FIN or SYN/RST flags, an attacker could exploit this vulnerability to bypass expected blocking of these packets.
Impact
- Denial of Service
- Security Bypass
Indicators of Compromise
CVE
- CVE-2024-39513
- CVE-2024-39561
Affected Vendors
Affected Products
- Juniper Networks Junos OS Evolved
- Juniper Networks Junos OS 21.4
- Juniper Networks Junos OS 22.1
- Juniper Networks Junos OS 22.3
- Juniper Networks Junos OS 22.2
- Juniper Networks Junos OS 22.4
- Juniper Networks Junos OS 23.2
- Juniper Networks Junos OS 23.4
- Juniper Networks SRX4600
- Juniper Networks SRX5000
Remediation
Refer to Juniper Networks Security Advisory for patch, upgrade or suggested workaround information.