Analysis Summary

CVE-2024-39513 CVSS:5.5

Juniper Networks Junos OS Evolved is vulnerable to a denial of service, caused by an improper input validation vulnerability in the Packet Forwarding Engine (PFE). By sending a specially crafted request, a local authenticated attacker could exploit this vulnerability to cause a denial of service.

CVE-2024-39561 CVSS:5.8

Juniper Networks Junos OS could allow a remote attacker to bypass security restrictions, caused by improper check for unusual or exceptional conditions in the flow daemon (flowd). By sending specially crafted TCP packets with SYN/FIN or SYN/RST flags, an attacker could exploit this vulnerability to bypass expected blocking of these packets.

Impact

• Denial of Service
• Security Bypass

Indicators of Compromise

CVE

• CVE-2024-39513
• CVE-2024-39561

Affected Vendors

Remediation

Refer to Juniper Networks Security Advisory for patch, upgrade or suggested workaround information.

CVE-2024-39513

CVE-2024-39561