Main Vulnerability Database Vulnerabilities #VU88488

Incorrect behavior order in Juniper Junos OS - CVE-2024-30410

Published: April 12, 2024

Vulnerability identifier: #VU88488

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2024-30410

CWE-ID: CWE-696

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Juniper Networks, Inc.

Affected software:
Juniper Junos OS

Detailed vulnerability description

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to an incorrect behavior order error in the routing engine (RE) of Juniper Networks Junos OS on EX4300 Series, which allows traffic intended to the device to reach the RE instead. A remote attacker can send specially crafted IPv6 packets to the device and bypass implemented firewall rules.

Note, the vulnerability affects only EX4300 switch.

How to mitigate CVE-2024-30410

Install updates from vendor's website.

Sources

https://supportportal.juniper.net/s/article/2024-04-Security-Bulletin-Junos-OS-EX4300-Series-Loopback-filter-not-blocking-traffic-despite-having-discard-term-CVE-2024-30410

Incorrect behavior order in Juniper Junos OS - CVE-2024-30410

Detailed vulnerability description

How to mitigate CVE-2024-30410

Sources

Please verify you're human