Vulnerability Description
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (DoS). On all ACX 7000 Series platforms running Junos OS Evolved, and configured with IRBs, if a Customer Edge device (CE) device is dual homed to two Provider Edge devices (PE) a traffic loop will occur when the CE sends multicast packets. This issue can be triggered by IPv4 and IPv6 traffic. This issue affects Junos OS Evolved: All versions from 22.2R1-EVO and later versions before 22.4R2-EVO, This issue does not affect Junos OS Evolved versions before 22.1R1-EVO.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos Os Evolved | >= 22.2, < 22.4 |
| Juniper | Acx7024 | - |
| Juniper | Acx7024X | - |
| Juniper | Acx7100-32C | - |
| Juniper | Acx7100-48L | - |
| Juniper | Acx7332 | - |
| Juniper | Acx7348 | - |
| Juniper | Acx7509 | - |
Related Weaknesses (CWE)
References
- https://supportportal.juniper.net/JSA82983Vendor Advisory
- https://supportportal.juniper.net/JSA82983Vendor Advisory
FAQ
What is CVE-2024-39519?
CVE-2024-39519 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent a...
How severe is CVE-2024-39519?
CVE-2024-39519 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-39519?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos Os Evolved, Juniper Acx7024, Juniper Acx7024X, Juniper Acx7100-32C, Juniper Acx7100-48L.