CVE-2024-39560— Junos OS and Junos OS Evolved: Memory leak due to RSVP neighbor persistent error leading to kernel crash

CVSS 6.5 · Medium EPSS 0.15% · P35 Updated Jan 25, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2024-39560

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Junos OS and Junos OS Evolved: Memory leak due to RSVP neighbor persistent error leading to kernel crash

Source: NVD (National Vulnerability Database)

Vulnerability Description

An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a logically adjacent downstream RSVP neighbor to cause kernel memory exhaustion, leading to a kernel crash, resulting in a Denial of Service (DoS). The kernel memory leak and eventual crash will be seen when the downstream RSVP neighbor has a persistent error which will not be corrected. System kernel memory can be monitored through the use of the 'show system kernel memory' command as shown below: user@router> show system kernel memory Real memory total/reserved: 4130268/ 133344 Kbytes kmem map free: 18014398509110220 Kbytes This issue affects: Junos OS: * All versions before 20.4R3-S9, * All versions of 21.2, * from 21.4 before 21.4R3-S5, * from 22.1 before 22.1R3-S5, * from 22.2 before 22.2R3-S3, * from 22.3 before 22.3R3-S2, * from 22.4 before 22.4R3, * from 23.2 before 23.2R2; Junos OS Evolved: * All versions before 21.4R3-S5-EVO, * from 22.1-EVO before 22.1R3-S5-EVO, * from 22.2-EVO before 22.2R3-S3-EVO, * from 22.3-EVO before 22.3R3-S2-EVO, * from 22.4-EVO before 22.4R3-EVO, * from 23.2-EVO before 23.2R2-EVO.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

对异常条件的处理不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Juniper Networks Junos OS和Juniper Networks Junos OS Evolved都是美国瞻博网络（Juniper Networks）公司的产品。Juniper Networks Junos OS是一套专用于该公司的硬件设备的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。Juniper Networks Junos OS Evolved是Junos OS 的升级版系统。 Juniper Networks Junos OS和Juniper Network

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Juniper Networks	Junos OS	0 ~ 20.4R3-S9	-
Juniper Networks	Junos OS Evolved	0 ~ 21.4R3-S5-EVO	-

II. Public POCs for CVE-2024-39560

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2024-39560

请登录查看更多情报信息。

https://supportportal.juniper.net/JSA83020vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2024-39560

Same Patch Batch · Juniper Networks · 2024-07-10 · 15 CVEs total

CVE-2024-39518	7.5 HIGH	Junos OS: MX240, MX480, MX960 platforms using MPC10E: Memory leak will be observed when su
CVE-2024-39562	7.5 HIGH	Junos OS Evolved: A high rate of SSH connections causes a Denial of Service
CVE-2024-39555	7.5 HIGH	Junos OS and Junos OS Evolved: Receipt of a specific malformed BGP update causes the sessi
CVE-2024-39512	6.6 MEDIUM	Junos OS Evolved: User is not logged out when the console cable is disconnected
CVE-2024-39517	6.5 MEDIUM	Junos OS and Junos OS Evolved: Upon processing specific L2 traffic, rpd can hang in device
CVE-2024-39514	6.5 MEDIUM	Junos OS and Junos OS Evolved: Receiving specific traffic on devices with EVPN-VPWS with I
CVE-2024-39558	6.5 MEDIUM	Junos OS and Junos OS Evolved: Receipt of specific PIM packet causes rpd crash when PIM is
CVE-2024-39557	6.5 MEDIUM	Junos OS Evolved: MAC table changes cause a memory leak
CVE-2024-39556	6.4 MEDIUM	Junos OS and Junos OS Evolved: Loading a malicious certificate from the CLI may result in
CVE-2024-39559	5.9 MEDIUM	Junos OS Evolved: Receipt of a specific TCP packet may result in a system crash (vmcore) o
CVE-2024-39554	5.9 MEDIUM	Junos OS and Junos OS Evolved: BGP multipath incremental calculation is resulting in an rp
CVE-2024-39561	5.8 MEDIUM	Junos OS: SRX4600, SRX5000 Series: TCP packets with SYN/FIN or SYN/RST are transferred aft
CVE-2024-39513	5.5 MEDIUM	Junos OS Evolved: Execution of a specific CLI command will cause a crash in the AFT manage
CVE-2024-39511	5.5 MEDIUM	Junos OS: The 802.1X Authentication Daemon crashes on running a specific command

IV. Related Vulnerabilities

Same product: Junos OS

Same vendor: Juniper Networks

Same weakness: CWE-755

V. Comments for CVE-2024-39560

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2024-39560— Junos OS and Junos OS Evolved: Memory leak due to RSVP neighbor persistent error leading to kernel crash

I. Basic Information for CVE-2024-39560

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2024-39560

III. Intelligence Information for CVE-2024-39560

Same Patch Batch · Juniper Networks · 2024-07-10 · 15 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2024-39560

Leave a comment