Uncontrolled Resource Consumption vulnerability in Juniper Networks Junos OS
CVE-2024-39551

7.5HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Os
Vendor: CVE Published:; 11 July 2024

Summary

An Uncontrolled Resource Consumption vulnerability exists in the H.323 ALG (Application Layer Gateway) within Juniper Networks' Junos OS, particularly affecting SRX Series and MX Series devices equipped with SPC3 and MS-MPC/MIC. This vulnerability allows unauthenticated network-based attackers to send specially crafted packets, causing significant traffic loss that can lead to Denial of Service (DoS) conditions. If the attacker continues to send these packets, the system remains in a sustained DoS state. Device operators can monitor memory usage to detect exploitation through the command: 'show usp memory segment sha data objcache jsf'. The issue impacts various versions of Junos OS across multiple releases, emphasizing the need for immediate attention from affected users.

Affected Version(s)

Junos OS SRX Series 20.4 < 20.4R3-S10

Junos OS SRX Series 21.2 < 21.2R3-S6

Junos OS SRX Series 21.3 < 21.3R3-S5

References

https://supportportal.juniper.net/JSA83013

vendor-advisory

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Jul 11, 2024
Vulnerability Reserved
Jun 25, 2024