April 29, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
SideWinder APT Group aka Rattlesnake – Active IOCs
January 6, 2025Multiple Dell Products Vulnerabilities
January 6, 2025SideWinder APT Group aka Rattlesnake – Active IOCs
January 6, 2025Multiple Dell Products Vulnerabilities
January 6, 2025
Severity
High
Analysis Summary
CVE-2024-47507 CVSS:6.9
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause an integrity impact to the downstream devices.
CVE-2024-47506 CVSS:8.2
A Deadlock vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS).
CVE-2024-47509 CVSS:7.1
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service (DoS).When specific SNMP GET operations or specific low-priviledged CLI commands are executed, a GUID resource leak will occur, eventually leading to exhaustion and resulting in FPCs to hang. Affected FPCs need to be manually restarted to recover.
CVE-2024-47508 CVSS:7.1
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service (DoS).When specific SNMP GET operations or specific low-priviledged CLI commands are executed, a GUID resource leak will occur, eventually leading to exhaustion and resulting in FPCs to hang. Affected FPCs need to be manually restarted to recover.
CVE-2024-47505 CVSS:7.1
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service (DoS).When specific SNMP GET operations or specific low-priviledged CLI commands are executed, a GUID resource leak will occur, eventually leading to exhaustion and resulting in FPCs to hang. Affected FPCs need to be manually restarted to recover.
Impact
- Denial of Service
- Gain Access
Indicators of Compromise
CVE
- CVE-2024-47507
- CVE-2024-47506
- CVE-2024-47509
- CVE-2024-47508
- CVE-2024-47505
Affected Vendors
Juniper
Affected Products
- Juniper Networks Junos OS 22.2 - 22.4
- Juniper Networks Junos OS Evolved 22.2 - 22.4
- Juniper Networks Junos OS 21.4 - 22.1 - 22.2
Remediation
Refer to Juniper Networks Website for patch, upgrade, or suggested workaround information.
