Juniper Junos OS BGP traceoptions DoS Vulnerability (CVE-2024-39525)

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. Vulnerability Description: - Vulnerability Name: 2024-10 Security Bulletin: Junos OS and Junos OS Evolved: When BGP traceoptions is enabled, receipt of specially crafted BGP packet causes RPD crash (CVE-2024-39525) - Affected Products: Junos OS and Junos OS Evolved - Vulnerability Type: Denial of Service (DoS) - Cause: A vulnerability exists in the Routing Protocol Daemon (RPD) of Junos OS and Junos OS Evolved, where an unauthorized attacker can send specially crafted BGP packets, causing the RPD to crash and restart. 2. Impact: - Affected Versions: - Junos OS: All versions prior to 21.2R3-S8, and versions starting from 21.4R3-S8, 22.2R3-S4, 22.3R3-S4, 22.4R3-S3, 23.2R2-S1, and 23.4R2. - Junos OS Evolved: All versions prior to 21.2R3-S8-EVO, and versions starting from 21.4-EVO, 22.2-EVO, 22.3-EVO, 22.4-EVO, 23.2-EVO, and 23.4-EVO. 3. Exploitation Requirements: - BGP traceoptions must be configured, and a BGP session must already be established. 4. Mitigation/Solution: - Upgrade to a non-affected software version. - Disable BGP traceoptions if they are not actively used for troubleshooting. 5. Vulnerability Rating: - CVSS v3.1: 7.5 - CVSS v4.0: 8.7 6. Affected Series/Features: - All affected versions of Junos OS and Junos OS Evolved. This information helps users understand the details of the vulnerability, the scope of affected products, and how to mitigate and prevent exploitation.

Goal Reached Thanks to every supporter — we hit 100%!

Juniper Junos OS BGP traceoptions DoS Vulnerability (CVE-2024-39525)