Medium

Analysis Summary

CVE-2024-30401 CVSS:5.9

Juniper Networks Junos OS is vulnerable to a denial of service, caused by an out-of-bounds read vulnerability in the advanced forwarding management process aftman. By sending a specially crafted reuqest, a remote attacker could exploit this vulnerability to cause a reboot of the FPC.

CVE-2024-21615 CVSS:5

Juniper Networks Junos OS and Junos OS Evolved could allow a local authenticated attacker to obtain sensitive information, caused by an incorrect default permissions vulnerability. By sending a specially crafted request, an attacker could exploit this vulnerability to access confidential information on the system.

CVE-2024-30384 CVSS:5.5

Juniper Networks Junos OS is vulnerable to a denial of service, caused by improper error handling in the Packet Forwarding Engine (PFE). By sending a specially crafted CLI command, a local authenticated attacker could exploit this vulnerability to cause PFE to crash.

CVE-2024-30380 CVSS:6.5

Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by an improper handling of exceptional conditions vulnerability. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.

CVE-2024-30409 CVSS:4.3

Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by improper error handling in the telemetry processing. By sending specially crafted packets, a remote attacker could exploit this vulnerability to cause the forwarding information base telemetry daemon (fibtd) to crash.

CVE-2024-30386 CVSS:5.3

Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by an use-after-free vulnerability. By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.

CVE-2024-30388 CVSS:6.5

Juniper Networks Junos OS is vulnerable to a denial of service, caused by improper isolation or compartmentalization flaw in the Packet Forwarding Engine (pfe). By sending specially crafted LACP packets, a remote attacker could exploit this vulnerability to cause a denial of service condition.

CVE-2024-30410 CVSS:5.8

Juniper Networks Junos OS could allow a remote attacker to bypass security restrictions, caused by an incorrect behavior order flaw in the routing engine (RE). By sending a specially crafted request, an attacker could exploit this vulnerability to bypass traffic blocking when discard term is set.

CVE-2024-30391 CVSS:4.8

Juniper Networks Junos OS and Junos OS Evolved could allow a remote attacker to bypass security restrictions, caused by a missing authentication for critical function vulnerability in the Packet Forwarding Engine (pfe). By sending a specially crafted request, an attacker could exploit this vulnerability to cause limited impact to the integrity or availability of the device.

CVE-2024-21609 CVSS:6.5

Juniper Networks Junos OS is vulnerable to a denial of service, caused by a missing release of memory after effective lifetime vulnerability in the IKE daemon (iked). By sending a specially crafted request, a remote attacker could exploit this vulnerability to cause a denial of service.

CVE-2024-30402 CVSS:5.9

Juniper Networks Junos OS and Junos OS Evolved are vulnerable to a denial of service, caused by improper error handling in the Layer 2 Address Learning Daemon (l2ald). By sending specially crafted telemetry messages, a remote attacker could exploit this vulnerability to cause l2ald to crash.

CVE-2024-21590 CVSS:6.5

Juniper Networks Junos OS Evolved is vulnerable to a denial of service, caused by improper input validation in the Juniper Tunnel Driver (jtd) and ICMP module. By sending specially crafted packets, a remote attacker could exploit this vulnerability to cause a denial of service condition.

CVE-2024-30378 CVSS:5.5

Juniper Networks Junos OS Evolved is vulnerable to a denial of service, caused by a use-after-free flaw in command processing. By sending specially crafted CLI commands, a local authenticated attacker could exploit this vulnerability to cause the bbe-smgd process to crash.

CVE-2024-30406 CVSS:5.5

Juniper Networks Junos OS Evolved could allow a local authenticated attacker to obtain sensitive information, caused by a flaw in the Paragon Active Assurance Test Agent software. By sending a specially crafted request, an attacker could exploit this vulnerability to recover other administrators credentials, and use this information to launch further attacks against the affected system.