Vulnerability Description
An Out-of-bounds Read vulnerability in the advanced forwarding management process aftman of Juniper Networks Junos OS on MX Series with MPC10E, MPC11, MX10K-LC9600 line cards, MX304, and EX9200-15C, may allow an attacker to exploit a stack-based buffer overflow, leading to a reboot of the FPC. Through code review, it was determined that the interface definition code for aftman could read beyond a buffer boundary, leading to a stack-based buffer overflow. This issue affects Junos OS on MX Series and EX9200-15C: * from 21.2 before 21.2R3-S1, * from 21.4 before 21.4R3, * from 22.1 before 22.1R2, * from 22.2 before 22.2R2; This issue does not affect: * versions of Junos OS prior to 20.3R1; * any version of Junos OS 20.4.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos | 21.2 |
| Juniper | Ex9200-15C | - |
| Juniper | Lc9600 | - |
| Juniper | Mpc10E-10C | - |
| Juniper | Mpc10E-15C | - |
| Juniper | Mpc11 | - |
| Juniper | Mx10004 | - |
| Juniper | Mx10008 | - |
| Juniper | Mx2008 | - |
| Juniper | Mx2010 | - |
| Juniper | Mx2020 | - |
| Juniper | Mx204 | - |
| Juniper | Mx240 | - |
| Juniper | Mx304 | - |
| Juniper | Mx480 | - |
| Juniper | Mx960 | - |
Related Weaknesses (CWE)
References
- https://supportportal.juniper.net/JSA79110Vendor Advisory
- https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:NVendor Advisory
- https://supportportal.juniper.net/JSA79110Vendor Advisory
- https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:NVendor Advisory
FAQ
What is CVE-2024-30401?
CVE-2024-30401 is a vulnerability with a CVSS score of 5.9 (MEDIUM). An Out-of-bounds Read vulnerability in the advanced forwarding management process aftman of Juniper Networks Junos OS on MX Series with MPC10E, MPC11, MX10K-LC9600 line cards, MX304, and EX9200-15C, m...
How severe is CVE-2024-30401?
CVE-2024-30401 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-30401?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos, Juniper Ex9200-15C, Juniper Lc9600, Juniper Mpc10E-10C, Juniper Mpc10E-15C.