Main Vulnerability Database Vulnerabilities #VU88488

Incorrect behavior order in Juniper Junos OS - CVE-2024-30410

Published: April 12, 2024

Vulnerability identifier: #VU88488

CSH Severity: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2024-30410

CWE-ID: CWE-696

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Juniper Junos OS

Software vendor:
Juniper Networks, Inc.

Description

The vulnerability allows a remote attacker to bypass certain security restrictions.

The vulnerability exists due to an incorrect behavior order error in the routing engine (RE) of Juniper Networks Junos OS on EX4300 Series, which allows traffic intended to the device to reach the RE instead. A remote attacker can send specially crafted IPv6 packets to the device and bypass implemented firewall rules.

Note, the vulnerability affects only EX4300 switch.

Remediation

Install updates from vendor's website.

External links

https://supportportal.juniper.net/s/article/2024-04-Security-Bulletin-Junos-OS-EX4300-Series-Loopback-filter-not-blocking-traffic-despite-having-discard-term-CVE-2024-30410

Incorrect behavior order in Juniper Junos OS - CVE-2024-30410

Description

Remediation

External links

Please verify you're human