Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (DoS). On all ACX 7000 Series platforms running Junos OS Evolved, and configured with IRBs, if a Customer Edge device (CE) device is dual homed to two Provider Edge devices (PE) a traffic loop will occur when the CE sends multicast packets. This issue can be triggered by IPv4 and IPv6 traffic. This issue affects Junos OS Evolved:  All versions from 22.2R1-EVO and later versions before 22.4R2-EVO, This issue does not affect Junos OS Evolved versions before 22.1R1-EVO.

Related CPE's

o

juniper

junos_os_evolved

5

h

juniper

acx7024

-

h

juniper

acx7024x

-

h

juniper

acx7100-32c

-

h

juniper

acx7100-48l

-

h

juniper

acx7332

-

h

juniper

acx7348

-

h

juniper

acx7509

-

References

https://supportportal.juniper.net/JSA82983

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-754

[email protected]

Secondary
CWE-754

CVSS impact metrics

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

6.5 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2024-07-11T16:15:02.717

3 months ago

Last modified

2024-09-23T14:21:16.690

4 weeks ago