8.7

CVE-2024-47504

Junos OS: SRX5000 Series: Receipt of a specific malformed packet will cause a flowd crash

An Improper Validation of Specified Type of Input vulnerability in the packet forwarding engine (pfe) Juniper Networks Junos OS on SRX5000 Series allows an unauthenticated, network based attacker to cause a Denial of Service (Dos).

When a non-clustered SRX5000 device receives a specifically malformed packet this will cause a flowd crash and restart.

This issue affects Junos OS:

  *  22.1 releases 22.1R1 and later before 22.2R3-S5,
  *  22.3 releases before 22.3R3-S4,
  *  22.4 releases before 22.4R3-S4,
  *  23.2 releases before 23.2R2-S2,
  *  23.4 releases before 23.4R2-S1,
  *  24.2 releases before 24.2R1-S1, 24.2R2.


Please note that the PR does indicate that earlier versions have been fixed as well, but these won't be adversely impacted by this.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
JuniperJunos Version22.1 Updater1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater1-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater1-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater2-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater2-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater3
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater3-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater3-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater3-s3
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.1 Updater3-s4
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Update-
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater1-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater1-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater2-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater2-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater3
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater3-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater3-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.3 Updater3-s3
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Update-
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater1-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater1-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater2-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater2-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater3
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater3-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater3-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version22.4 Updater3-s3
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.2 Update-
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.2 Updater1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.2 Updater1-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.2 Updater1-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.2 Updater2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.2 Updater2-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.4 Update-
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.4 Updater1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.4 Updater1-s1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.4 Updater1-s2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version23.4 Updater2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version24.2 Update-
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version24.2 Updater1
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
JuniperJunos Version24.2 Updater2
   JuniperSrx5400 Version-
   JuniperSrx5600 Version-
   JuniperSrx5800 Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.24% 0.465
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
sirt@juniper.net 8.7 0 0
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:X/RE:M/U:X
sirt@juniper.net 7.5 3.9 3.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
CWE-1287 Improper Validation of Specified Type of Input

The product receives input that is expected to be of a certain type, but it does not validate or incorrectly validates that the input is actually of the expected type.