Request a Demo
Rewterz
SideWinder APT Group aka Rattlesnake – Active IOCs
January 6, 2025
Rewterz
Multiple Dell Products Vulnerabilities
January 6, 2025

Multiple Juniper Networks Products Vulnerabilities

Severity

High

Analysis Summary

CVE-2024-47507 CVSS:6.9

An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause an integrity impact to the downstream devices.

CVE-2024-47506 CVSS:8.2

A Deadlock vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS).

CVE-2024-47509 CVSS:7.1

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service (DoS).When specific SNMP GET operations or specific low-priviledged CLI commands are executed, a GUID resource leak will occur, eventually leading to exhaustion and resulting in FPCs to hang. Affected FPCs need to be manually restarted to recover.

CVE-2024-47508 CVSS:7.1

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service (DoS).When specific SNMP GET operations or specific low-priviledged CLI commands are executed, a GUID resource leak will occur, eventually leading to exhaustion and resulting in FPCs to hang. Affected FPCs need to be manually restarted to recover.

CVE-2024-47505 CVSS:7.1

An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service (DoS).When specific SNMP GET operations or specific low-priviledged CLI commands are executed, a GUID resource leak will occur, eventually leading to exhaustion and resulting in FPCs to hang. Affected FPCs need to be manually restarted to recover.

Impact

  • Denial of Service
  • Gain Access

Indicators of Compromise

CVE

  • CVE-2024-47507
  • CVE-2024-47506
  • CVE-2024-47509
  • CVE-2024-47508
  • CVE-2024-47505

Affected Vendors

Juniper

Affected Products

  • Juniper Networks Junos OS 22.2 - 22.4
  • Juniper Networks Junos OS Evolved 22.2 - 22.4
  • Juniper Networks Junos OS 21.4 - 22.1 - 22.2

Remediation

Refer to Juniper Networks Website for patch, upgrade, or suggested workaround information.

Juniper Networks Website