Juniper Junos OS Evolved Unauthenticated DoS Vulnerability (CVE-2024-47502) Advisory

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. Vulnerability ID: CVE-2024-47502 2. Affected Product: All versions of Junos OS Evolved 3. Severity: High (CVSS v3.1: 7.5, CVSS v4.0: 8.7) 4. Issue Description: - A vulnerability exists in the kernel of Junos OS Evolved that can be exploited by unauthorized network attackers, leading to a Denial of Service (DoS). - Under specific conditions, TCP session states are not cleared, which over time leads to resource exhaustion and prevents the establishment of new connections. - A continuously increasing number of connections is an indicator of the issue. 5. Affected Versions: - All versions prior to 21.4R3-S9-EVO - 22.2 versions prior to 22.2R3-S4-EVO - 22.4 versions prior to 22.4R3-S3-EVO - 23.2 versions prior to 23.2R2-S1-EVO - 23.4 versions prior to 23.4R2-EVO 6. Solution: - The following software versions have been updated to address this specific issue: 21.4R3-S9-EVO, 22.2R3-S4-EVO, 22.4R3-S3-EVO, 23.2R2-S1-EVO, 23.4R2-EVO, 23.4R1-EVO, and all subsequent versions. 7. Workarounds: - No viable workarounds are available. - Limit access to the device using access lists or firewall filters, allowing access only from trusted management networks or hosts. 8. Severity Assessment: - Juniper Networks uses CVSS for severity assessment; detailed information is available in KB 16446. 9. Revision History: - 2024-10-09: Initial release 10. Related Information: - KB16613: Overview of Juniper Networks SIRT Quarterly Security Bulletin Release Process - KB16765: Which Versions Fixed the Vulnerability? - KB16446: Common Vulnerability Scoring System (CVSS) and Juniper Vulnerability Bulletins - Report a Security Vulnerability – How to Contact Juniper Networks Security Incident Response Team This information provides detailed descriptions of the vulnerability, affected products, severity assessment, and remediation steps.

Goal Reached Thanks to every supporter — we hit 100%!

Juniper Junos OS Evolved Unauthenticated DoS Vulnerability (CVE-2024-47502) Advisory