Unauthenticated Integrity Impact Vulnerability in Juniper Networks Junos OS on EX4300 Series
CVE-2024-30389

5.8MEDIUM

Key Information:

Vendor: Juniper Networks
Status: Junos Os
Vendor: CVE Published:; 12 April 2024

Badges

👾 Exploit Exists

Summary

An Incorrect Behavior Order vulnerability exists within the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS, specifically impacting the EX4300 Series. This vulnerability enables an unauthenticated, network-based attacker to compromise the integrity of networks relying on the affected device. When output firewall filters are applied on interfaces, they fail to recognize certain matching packets, inadvertently allowing any traffic. This vulnerability impacts releases of Junos OS version 21.4 from 21.4R1 up to but not including 21.4R3-S6. Previous versions of Junos OS, released before 21.4R1, are not affected.

Affected Version(s)

Junos OS EX4300 Series 21.4 < 21.4R3-S6

Junos OS EX4300 Series 21.4 < 21.4R1

References

http://supportportal.juniper.net/JSA79185

vendor-advisory

https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/A...

technical-description

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

👾
Exploit known to exist
May 16, 2024
Vulnerability published
Apr 12, 2024
Vulnerability Reserved
Mar 26, 2024

Collectors

NVD DatabaseMitre Database