Main Vulnerability Database SB2024041204

SB2024041204 - Firewall rules bypass in Junos OS on EX4300

Published: April 12, 2024

Security Bulletin ID SB2024041204

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Incorrect behavior order (CVE-ID: CVE-2024-30410)

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to an incorrect behavior order error in the routing engine (RE) of Juniper Networks Junos OS on EX4300 Series, which allows traffic intended to the device to reach the RE instead. A remote attacker can send specially crafted IPv6 packets to the device and bypass implemented firewall rules.

Note, the vulnerability affects only EX4300 switch.

Remediation

Install update from vendor's website.

References

https://supportportal.juniper.net/s/article/2024-04-Security-Bulletin-Junos-OS-EX4300-Series-Loopback-filter-not-blocking-traffic-despite-having-discard-term-CVE-2024-30410