8.7
CVE-2024-39540
- EPSS 0.4%
- Veröffentlicht 11.07.2024 17:15:12
- Zuletzt bearbeitet 11.04.2025 14:50:12
- Quelle sirt@juniper.net
- CVE-Watchlists
- Unerledigt
LoginAn Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on SRX Series, and MX Series with SPC3 allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). When an affected device receives specific valid TCP traffic, the pfe crashes and restarts leading to a momentary but complete service outage. This issue affects Junos OS: 21.2 releases from 21.2R3-S5 before 21.2R3-S6. This issue does not affect earlier or later releases.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Juniper ≫ Junos Version21.2 Updater3-s5
Juniper ≫ Csrx Version-
Juniper ≫ Mx240 Version-
Juniper ≫ Mx480 Version-
Juniper ≫ Mx960 Version-
Juniper ≫ Srx100 Version-
Juniper ≫ Srx110 Version-
Juniper ≫ Srx1400 Version-
Juniper ≫ Srx1500 Version-
Juniper ≫ Srx1600 Version-
Juniper ≫ Srx210 Version-
Juniper ≫ Srx220 Version-
Juniper ≫ Srx2300 Version-
Juniper ≫ Srx240 Version-
Juniper ≫ Srx240h2 Version-
Juniper ≫ Srx240m Version-
Juniper ≫ Srx300 Version-
Juniper ≫ Srx320 Version-
Juniper ≫ Srx340 Version-
Juniper ≫ Srx3400 Version-
Juniper ≫ Srx345 Version-
Juniper ≫ Srx3600 Version-
Juniper ≫ Srx380 Version-
Juniper ≫ Srx4000 Version-
Juniper ≫ Srx4100 Version-
Juniper ≫ Srx4200 Version-
Juniper ≫ Srx4300 Version-
Juniper ≫ Srx4600 Version-
Juniper ≫ Srx4700 Version-
Juniper ≫ Srx5000 Version-
Juniper ≫ Srx5400 Version-
Juniper ≫ Srx550 Version-
Juniper ≫ Srx550 Hm Version-
Juniper ≫ Srx550m Version-
Juniper ≫ Srx5600 Version-
Juniper ≫ Srx5800 Version-
Juniper ≫ Srx650 Version-
Juniper ≫ Vsrx Version-
Juniper ≫ Mx240 Version-
Juniper ≫ Mx480 Version-
Juniper ≫ Mx960 Version-
Juniper ≫ Srx100 Version-
Juniper ≫ Srx110 Version-
Juniper ≫ Srx1400 Version-
Juniper ≫ Srx1500 Version-
Juniper ≫ Srx1600 Version-
Juniper ≫ Srx210 Version-
Juniper ≫ Srx220 Version-
Juniper ≫ Srx2300 Version-
Juniper ≫ Srx240 Version-
Juniper ≫ Srx240h2 Version-
Juniper ≫ Srx240m Version-
Juniper ≫ Srx300 Version-
Juniper ≫ Srx320 Version-
Juniper ≫ Srx340 Version-
Juniper ≫ Srx3400 Version-
Juniper ≫ Srx345 Version-
Juniper ≫ Srx3600 Version-
Juniper ≫ Srx380 Version-
Juniper ≫ Srx4000 Version-
Juniper ≫ Srx4100 Version-
Juniper ≫ Srx4200 Version-
Juniper ≫ Srx4300 Version-
Juniper ≫ Srx4600 Version-
Juniper ≫ Srx4700 Version-
Juniper ≫ Srx5000 Version-
Juniper ≫ Srx5400 Version-
Juniper ≫ Srx550 Version-
Juniper ≫ Srx550 Hm Version-
Juniper ≫ Srx550m Version-
Juniper ≫ Srx5600 Version-
Juniper ≫ Srx5800 Version-
Juniper ≫ Srx650 Version-
Juniper ≫ Vsrx Version-
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.4% | 0.596 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| sirt@juniper.net | 8.7 | 0 | 0 |
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
|
| sirt@juniper.net | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
CWE-754 Improper Check for Unusual or Exceptional Conditions
The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.