目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

CVE-2024-47508— Juniper Networks Junos OS Evolved 安全漏洞

CVSS 6.5 · Medium EPSS 0.13% · P32
新しい脆弱性情報の通知を購読するログインして購読

I. CVE-2024-47508の基本情報

脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗

高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。

脆弱性タイトル
Junos OS Evolved: Specific low privileged CLI commands and SNMP GET requests can trigger a resource leak #2
ソース: NVD (National Vulnerability Database)
脆弱性説明
An Allocation of Resources Without Limits or Throttling vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved allows an authenticated, network-based attacker to cause an FPC crash leading to a Denial of Service (DoS).When specific SNMP GET operations or specific low-priviledged CLI commands are executed, a GUID resource leak will occur, eventually leading to exhaustion and resulting in FPCs to hang. Affected FPCs need to be manually restarted to recover. GUID exhaustion will trigger a syslog message like one of the following: evo-pfemand[<pid>]: get_next_guid: Ran out of Guid Space ... evo-aftmand-zx[<pid>]: get_next_guid: Ran out of Guid Space ... The leak can be monitored by running the following command and taking note of the values in the rightmost column labeled Guids: user@host> show platform application-info allocations app evo-pfemand/evo-pfemand In case one or more of these values are constantly increasing the leak is happening. This issue affects Junos OS Evolved: * All versions before 21.2R3-S8-EVO, * 21.3 versions before 21.3R3-EVO; * 21.4 versions before 22.1R2-EVO, * 22.1 versions before 22.1R1-S1-EVO, 22.1R2-EVO. Please note that this issue is similar to, but different from CVE-2024-47505 and CVE-2024-47509.
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
不加限制或调节的资源分配
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Juniper Networks Junos OS Evolved 安全漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Juniper Networks Junos OS Evolved是美国瞻博网络(Juniper Networks)公司的Junos OS 的升级版系统。 Juniper Networks Junos OS Evolved存在安全漏洞,该漏洞源于资源消耗不受控制。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)

影響を受ける製品

ベンダープロダクト影響を受けるバージョンCPE購読
Juniper NetworksJunos OS Evolved 21.2 ~ 21.2R3-S8-EVO -

II. CVE-2024-47508の公開POC

#POC説明ソースリンクShenlongリンク
AI生成POCプレミアム

公開POCは見つかりませんでした。

ログインしてAI POCを生成

III. CVE-2024-47508のインテリジェンス情報

登录查看更多情报信息。

Same Patch Batch · Juniper Networks · 2024-10-11 · 25 CVEs total

CVE-2024-474908.2 HIGHJunos OS Evolved: ACX 7000 Series: Receipt of specific transit MPLS packets causes resourc
CVE-2024-395477.5 HIGHJunos OS and Junos OS Evolved: cRPD: Receipt of crafted TCP traffic can trigger high CPU u
CVE-2024-475047.5 HIGHJunos OS: SRX5000 Series: Receipt of a specific malformed packet will cause a flowd crash
CVE-2024-475027.5 HIGHJunos OS Evolved: TCP session state is not always cleared on the Routing Engine leading to
CVE-2024-474997.5 HIGHJunos OS and Junos OS Evolved: In a BMP scenario receipt of a malformed AS PATH attribute
CVE-2024-474977.5 HIGHJunos OS: SRX Series, QFX Series, MX Series and EX Series: Receiving specific HTTPS traffi
CVE-2024-395637.3 HIGHJunos Space: Remote Command Execution (RCE) vulnerability in web application
CVE-2024-474956.7 MEDIUMJunos OS Evolved: In a dual-RE scenario a locally authenticated attacker with shell privil
CVE-2024-395266.5 MEDIUMJunos OS and Junos OS Evolved: MX Series with MPC10/MPC11/LC9600, MX304, EX9200, PTX Serie
CVE-2024-474936.5 MEDIUMJunos OS: MX Series: Trio-based FPCs: Continuous physical Interface flaps causes local FPC
CVE-2024-474986.5 MEDIUMJunos OS Evolved: QFX5000 Series: Configured MAC learning and move limits are not in effec
CVE-2024-475036.5 MEDIUMJunos OS: SRX4600 and SRX5000 Series: Sequence of specific PIM packets causes a flowd cras
CVE-2024-475056.5 MEDIUMJunos OS Evolved: Specific low privileged CLI commands and SNMP GET requests can trigger a
CVE-2024-475096.5 MEDIUMJunos OS Evolved: Specific low privileged CLI commands and SNMP GET requests can trigger a
CVE-2024-474945.9 MEDIUMJunos OS: Due to a race condition AgentD process causes a memory corruption and FPC reset
CVE-2024-474915.9 MEDIUMJunos OS and Junos OS Evolved: Receipt of a specific malformed BGP path attribute leads to
CVE-2024-475065.9 MEDIUMJunos OS: SRX Series: A large amount of traffic being processed by ATP Cloud can lead to a
CVE-2024-474895.8 MEDIUMJunos OS Evolved: ACX Series: Receipt of specific transit protocol packets is incorrectly
CVE-2024-475075.8 MEDIUMJunos OS and Junos OS Evolved: BGP update message containing aggregator attribute with an
CVE-2024-474965.5 MEDIUMJunos OS: MX Series: The PFE will crash on running specific command

Showing 20 of 25 CVEs. View all on vendor page →

IV. 関連脆弱性

同じ製品: Junos OS Evolved
同じベンダー: Juniper Networks
同じ弱点: CWE-770

V. CVE-2024-47508へのコメント

まだコメントはありません

コメントを残す