{"vulnerability": "CVE-2024-3955", "sightings": [{"uuid": "10924c70-6bd8-4515-b4c5-0671994b4bb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39554", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3846", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-39554\n\ud83d\udd25 CVSS Score: 5.8 (CVSS_V3)\n\ud83d\udd39 Description: A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability the \n\nRouting Protocol Daemon (rpd)\n\n of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to inject incremental routing updates when BGP multipath is enabled, causing rpd to crash and restart, resulting in a Denial of Service (DoS). Since this is a timing issue (race condition), the successful exploitation of this vulnerability is outside the attacker's control.\u00a0 However, continued receipt and processing of this packet may create a sustained Denial of Service (DoS) condition.\n\nOn all Junos OS and Junos OS Evolved platforms with BGP multipath enabled, a specific multipath calculation removes the original next hop from the multipath lead routes nexthop-set. When this change happens, multipath relies on certain internal timing to record the update.\u00a0 Under certain circumstance and with specific timing, this could result in an rpd crash.\n\nThis issue only affects systems with BGP multipath enabled.\n\n\nThis issue affects:\n\nJunos OS: \n\n\n  *  All versions of 21.1\n  *  from 21.2 before 21.2R3-S7, \n  *  from 21.4 before 21.4R3-S6, \n  *  from 22.1 before 22.1R3-S5, \n  *  from 22.2 before 22.2R3-S3, \n  *  from 22.3 before 22.3R3-S2, \n  *  from 22.4 before 22.4R3, \n  *  from 23.2 before 23.2R2.\n\n\n\n\nJunos OS Evolved: \n\n\n  *  All versions of 21.1-EVO,\n  *  All versions of 21.2-EVO,\n  *  from 21.4-EVO before 21.4R3-S6-EVO, \n  *  from 22.1-EVO before 22.1R3-S5-EVO, \n  *  from 22.2-EVO before 22.2R3-S3-EVO, \n  *  from 22.3-EVO before 22.3R3-S2-EVO, \n  *  from 22.4-EVO before 22.4R3-EVO, \n  *  from 23.2-EVO before 23.2R2-EVO.\n\n\n\nVersions of Junos OS before 21.1R1 are unaffected by this vulnerability.\nVersions of Junos OS Evolved before 21.1R1-EVO are unaffected by this vulnerability.\n\ud83d\udccf Published: 2024-07-11T00:32:50Z\n\ud83d\udccf Modified: 2025-02-07T21:30:57Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-39554\n2. https://supportportal.juniper.net/JSA83014", "creation_timestamp": "2025-02-07T22:03:10.000000Z"}, {"uuid": "ca36346d-5858-4e85-b8b6-f7caa6c7ac82", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39550", "type": "seen", "source": "https://t.me/cvedetector/682", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39550 - A Missing Release of Memory after Effective Lifeti\", \n  \"Content\": \"CVE ID : CVE-2024-39550 \nPublished : July 11, 2024, 5:15 p.m. | 42\u00a0minutes ago \nDescription : A Missing Release of Memory after Effective Lifetime vulnerability in the rtlogd process\u00a0of Juniper Networks Junos OS on MX Series with SPC3 allows an unauthenticated, adjacent attacker to trigger internal events cause ( which can be done by repeated port flaps)\u00a0to cause a slow memory leak, ultimately leading to a Denial of Service (DoS).   \n  \nMemory can only be recovered by manually restarting rtlogd process.\u00a0  \nThe memory usage can be monitored using the below command.  \n  \n\u2003\u2003\u2003\u2003user@host> show system processes extensive | match rtlog\u00a0  \n  \n  \n  \nThis issue affects Junos OS on MX Series with SPC3 line card:\u00a0  \n  \n  \n  \n  *  from 21.2R3 before 21.2R3-S8,\u00a0  \n  *  from 21.4R2 before 21.4R3-S6,\u00a0  \n  *  from 22.1 before 22.1R3-S5,\u00a0  \n  *  from 22.2 before 22.2R3-S3,\u00a0  \n  *  from 22.3 before 22.3R3-S2,\u00a0  \n  *  from 22.4 before 22.4R3-S1,\u00a0  \n  *  from 23.2 before 23.2R2,\u00a0  \n  *  from 23.4 before 23.4R2. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T19:59:56.000000Z"}, {"uuid": "1ff44107-c395-4aa8-89a1-1f46f56356de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39556", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3844", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-39556\n\ud83d\udd25 CVSS Score: 6.3 (CVSS_V3)\n\ud83d\udd39 Description: A Stack-Based Buffer Overflow vulnerability in Juniper Networks Junos OS and Juniper Networks Junos OS Evolved may allow a local, low-privileged attacker with access to the CLI the ability to load a malicious certificate file, leading to a limited Denial of Service (DoS) or privileged code execution.\n\nBy exploiting the 'set security certificates' command with a crafted certificate file, a malicious attacker with access to the CLI could cause a crash of the command management daemon (mgd), limited to the local user's command interpreter, or potentially trigger a stack-based buffer overflow.\n\n\nThis issue affects:\n\n\u00a0Junos OS: \n\n\n  *  All versions before 21.4R3-S7, \n  *  from 22.1 before 22.1R3-S6, \n  *  from 22.2 before 22.2R3-S4, \n  *  from 22.3 before 22.3R3-S3, \n  *  from 22.4 before 22.4R3-S2, \n  *  from 23.2 before 23.2R2, \n  *  from 23.4 before 23.4R1-S1, 23.4R2;\u00a0\n\n\n\n\nJunos OS Evolved: \n\n\n  *  All versions before 21.4R3-S7-EVO, \n  *  from 22.1-EVO before 22.1R3-S6-EVO, \n  *  from 22.2-EVO before 22.2R3-S4-EVO, \n  *  from 22.3-EVO before 22.3R3-S3-EVO, \n  *  from 22.4-EVO before 22.4R3-S2-EVO, \n  *  from 23.2-EVO before 23.2R2-EVO, \n  *  from 23.4-EVO before 23.4R1-S1-EVO, 23.4R2-EVO.\n\ud83d\udccf Published: 2024-07-11T00:32:51Z\n\ud83d\udccf Modified: 2025-02-07T21:30:59Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-39556\n2. https://supportportal.juniper.net/JSA83016", "creation_timestamp": "2025-02-07T22:03:09.000000Z"}, {"uuid": "8b8ca579-2b91-410c-bc30-e95923bb5693", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39555", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3845", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-39555\n\ud83d\udd25 CVSS Score: 7.5 (CVSS_V3)\n\ud83d\udd39 Description: An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an attacker sending a specific malformed BGP update message to cause the session to reset, resulting in a Denial of Service (DoS).  Continued receipt and processing of these malformed BGP update messages will create a sustained Denial of Service (DoS) condition.\n\nUpon receipt of a BGP update message over an established BGP session containing a specifically malformed tunnel encapsulation attribute, when segment routing is enabled, internal processing of the malformed attributes within the update results in improper parsing of remaining attributes, leading to session reset:\n\nBGP SEND Notification code 3 (Update Message Error) subcode 1 (invalid attribute list)\n\nOnly systems with segment routing enabled are vulnerable to this issue.\n\nThis issue affects eBGP and iBGP, in both IPv4 and IPv6 implementations, and requires a remote attacker to have at least one established BGP session.\n\nThis issue affects:\n\nJunos OS: \n\n\n  *  All versions before 21.4R3-S8, \n  *  from 22.2 before 22.2R3-S4, \n  *  from 22.3 before 22.3R3-S3, \n  *  from 22.4 before 22.4R3-S3, \n  *  from 23.2 before 23.2R2-S1, \n  *  from 23.4 before 23.4R1-S2, 23.4R2.\n\n\nJunos OS Evolved:\u00a0\n\n  *  All versions before 21.4R3-S8-EVO, \n  *  from 22.2-EVO before 22.2R3-S4-EVO, \n  *  from 22.3-EVO before 22.3R3-S3-EVO, \n  *  from 22.4-EVO before 22.4R3-S3-EVO, \n  *  from 23.2-EVO before 23.2R2-S1-EVO, \n  *  from 23.4-EVO before 23.4R1-S2-EVO, 23.4R2-EVO.\n\ud83d\udccf Published: 2024-07-11T00:32:51Z\n\ud83d\udccf Modified: 2025-02-07T21:30:58Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-39555\n2. https://supportportal.juniper.net/JSA83015", "creation_timestamp": "2025-02-07T22:03:09.000000Z"}, {"uuid": "ea529e8a-0875-4130-a270-c7134ffcd81a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39559", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3843", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-39559\n\ud83d\udd25 CVSS Score: 5.8 (CVSS_V3)\n\ud83d\udd39 Description: An Improper Check for Unusual or Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS Evolved may allow a network-based unauthenticated attacker to crash the device (vmcore) by sending a specific TCP packet over an established TCP session with MD5 authentication enabled, destined to an accessible port on the device, resulting in a Denial of Service (DoS).\u00a0 The receipt of this packet must occur within a specific timing window outside the attacker's control (i.e., race condition).\n\nContinued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.\n\nThis issue only affects\u00a0dual RE systems with Nonstop Active Routing (NSR) enabled.\nExploitation can only occur over TCP sessions with MD5 authentication enabled (e.g., BGP with MD5 authentication).\n\nThis issue affects Junos OS Evolved:\u00a0\n\n\n\n  *  All versions before 21.2R3-S8-EVO, \n  *  from 21.4-EVO before 21.4R3-S6-EVO, \n  *  from 22.1-EVO before 22.1R3-S4-EVO, \n  *  from 22.2-EVO before 22.2R3-S4-EVO, \n  *  from 22.3-EVO before 22.3R3-S3-EVO, \n  *  from 22.4-EVO before 22.4R2-S2-EVO, 22.4R3-EVO.\n\ud83d\udccf Published: 2024-07-11T00:32:51Z\n\ud83d\udccf Modified: 2025-02-07T21:31:00Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-39559\n2. https://supportportal.juniper.net/JSA83019", "creation_timestamp": "2025-02-07T22:03:08.000000Z"}, {"uuid": "3f816825-ff76-4449-9554-1de1462dbf7b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39558", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/3842", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-39558\n\ud83d\udd25 CVSS Score: 6.4 (CVSS_V3)\n\ud83d\udd39 Description: An Unchecked Return Value vulnerability in the Routing Protocol Daemon (rpd) on Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows a logically adjacent, unauthenticated attacker sending a specific PIM packet to cause rpd to crash and restart, resulting in a Denial of Service (DoS), when PIM is configured with Multicast-only Fast Reroute (MoFRR). Continued receipt and processing of this packet may create a sustained Denial of Service (DoS) condition.\n\nThis issue is observed on Junos and Junos Evolved platforms where PIM is configured along with MoFRR. MoFRR tries to select the active path, but due to an internal timing issue, rpd is unable to select the forwarding next-hop towards the source, resulting in an rpd crash.\n\nThis issue affects:\n\nJunos OS: \n\n\n  *  All versions before 20.4R3-S10, \n  *  from 21.2 before 21.2R3-S7, \n  *  from 21.4 before 21.4R3-S6, \n  *  from 22.1 before 22.1R3-S5, \n  *  from 22.2 before 22.2R3-S3, \n  *  from 22.3 before 22.3R3, \n  *  from 22.4 before 22.4R2;\u00a0\n\n\n\n\nJunos OS Evolved: \n\n\n  *  All versions before 20.4R3-S10 -EVO,\n  *  from 21.2-EVO before 21.2R3-S7 -EVO,\n  *  from 21.4-EVO before 21.4R3-S6 -EVO,\n  *  from 22.1-EVO before 22.1R3-S5 -EVO,\n  *  from 22.2-EVO before 22.2R3-S3-EVO,\n  *  from 22.3-EVO before 22.3R3-EVO,\n  *  from 22.4-EVO before 22.4R2-EVO.\n\ud83d\udccf Published: 2024-07-11T00:32:51Z\n\ud83d\udccf Modified: 2025-02-07T21:31:00Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2024-39558\n2. https://supportportal.juniper.net/JSA83018", "creation_timestamp": "2025-02-07T22:03:06.000000Z"}, {"uuid": "5a7049b2-a969-44a8-9895-0017bf414d76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39555", "type": "seen", "source": "https://t.me/cvedetector/614", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39555 - An Improper Handling of Exceptional Conditions vul\", \n  \"Content\": \"CVE ID : CVE-2024-39555 \nPublished : July 10, 2024, 11:15 p.m. | 16\u00a0minutes ago \nDescription : An Improper Handling of Exceptional Conditions vulnerability in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an attacker sending a specific malformed BGP update message to cause the session to reset, resulting in a Denial of Service (DoS).  Continued receipt and processing of these malformed BGP update messages will create a sustained Denial of Service (DoS) condition.  \n  \nUpon receipt of a BGP update message over an established BGP session containing a specifically malformed tunnel encapsulation attribute, when segment routing is enabled, internal processing of the malformed attributes within the update results in improper parsing of remaining attributes, leading to session reset:  \n  \nBGP SEND Notification code 3 (Update Message Error) subcode 1 (invalid attribute list)  \n  \nOnly systems with segment routing enabled are vulnerable to this issue.  \n  \nThis issue affects eBGP and iBGP, in both IPv4 and IPv6 implementations, and requires a remote attacker to have at least one established BGP session.  \n  \nThis issue affects:  \n  \nJunos OS:   \n  \n  \n  *  All versions before 21.4R3-S8,   \n  *  from 22.2 before 22.2R3-S4,   \n  *  from 22.3 before 22.3R3-S3,   \n  *  from 22.4 before 22.4R3-S3,   \n  *  from 23.2 before 23.2R2-S1,   \n  *  from 23.4 before 23.4R1-S2, 23.4R2.  \n  \n  \nJunos OS Evolved:\u00a0  \n  \n  *  All versions before 21.4R3-S8-EVO,   \n  *  from 22.2-EVO before 22.2R3-S4-EVO,   \n  *  from 22.3-EVO before 22.3R3-S3-EVO,   \n  *  from 22.4-EVO before 22.4R3-S3-EVO,   \n  *  from 23.2-EVO before 23.2R2-S1-EVO,   \n  *  from 23.4-EVO before 23.4R1-S2-EVO, 23.4R2-EVO. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T01:35:37.000000Z"}, {"uuid": "79831481-8c1a-4417-b366-00da97a4e004", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39557", "type": "seen", "source": "https://t.me/cvedetector/609", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39557 - An Uncontrolled Resource Consumption vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39557 \nPublished : July 10, 2024, 11:15 p.m. | 16\u00a0minutes ago \nDescription : An Uncontrolled Resource Consumption vulnerability in the   \n  \nLayer 2 Address Learning Daemon (l2ald)  \n  \n of Juniper Networks Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a memory leak, eventually exhausting all system memory, leading to a system crash and Denial of Service (DoS).  \n  \nCertain MAC table updates cause a small amount of memory to leak.\u00a0 Once memory utilization reaches its limit, the issue will result in a system crash and restart.  \n  \nTo identify the issue, execute the CLI command:  \n   \nuser@device> show platform application-info allocations app l2ald-agent  \nEVL Object Allocation Statistics:  \n   \n Node  \u00a0 Application  \u00a0 \u00a0  Context   Name  \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0  Live  \u00a0  Allocs  \u00a0  Fails  \u00a0 \u00a0  Guids  \n re0  \u00a0  l2ald-agent  \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0  net::juniper::rtnh::L2Rtinfo  \u00a0 \u00a0 \u00a0  1069096  1069302  \u00a0 0  \u00a0 \u00a0 \u00a0 \u00a0  1069302  \n re0  \u00a0  l2ald-agent  \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0  net::juniper::rtnh::NHOpaqueTlv  \u00a0 \u00a0  114  \u00a0 \u00a0 195  \u00a0 \u00a0 \u00a0 0  \u00a0 \u00a0 \u00a0 \u00a0  195  \n  \n  \n  \nThis issue affects Junos OS Evolved:   \n  \n  \n  *  All versions before 21.4R3-S8-EVO,  \n  \n  *  from 22.2-EVO before 22.2R3-S4-EVO,   \n  *  from 22.3-EVO\u00a0before 22.3R3-S3-EVO,   \n  *  from 22.4-EVO before 22.4R3-EVO,   \n  *  from 23.2-EVO before 23.2R2-EVO. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T01:35:29.000000Z"}, {"uuid": "30dea013-e99b-43f7-9383-f2144ffe6dc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39558", "type": "seen", "source": "https://t.me/cvedetector/608", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39558 - An Unchecked Return Value vulnerability in the Rou\", \n  \"Content\": \"CVE ID : CVE-2024-39558 \nPublished : July 10, 2024, 11:15 p.m. | 16\u00a0minutes ago \nDescription : An Unchecked Return Value vulnerability in the Routing Protocol Daemon (rpd) on Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows a logically adjacent, unauthenticated attacker sending a specific PIM packet to cause rpd to crash and restart, resulting in a Denial of Service (DoS), when PIM is configured with Multicast-only Fast Reroute (MoFRR). Continued receipt and processing of this packet may create a sustained Denial of Service (DoS) condition.  \n  \nThis issue is observed on Junos and Junos Evolved platforms where PIM is configured along with MoFRR. MoFRR tries to select the active path, but due to an internal timing issue, rpd is unable to select the forwarding next-hop towards the source, resulting in an rpd crash.  \n  \nThis issue affects:  \n  \nJunos OS:   \n  \n  \n  *  All versions before 20.4R3-S10,   \n  *  from 21.2 before 21.2R3-S7,   \n  *  from 21.4 before 21.4R3-S6,   \n  *  from 22.1 before 22.1R3-S5,   \n  *  from 22.2 before 22.2R3-S3,   \n  *  from 22.3 before 22.3R3,   \n  *  from 22.4 before 22.4R2;\u00a0  \n  \n  \n  \n  \nJunos OS Evolved:   \n  \n  \n  *  All versions before 20.4R3-S10 -EVO,  \n  *  from 21.2-EVO before 21.2R3-S7 -EVO,  \n  *  from 21.4-EVO before 21.4R3-S6 -EVO,  \n  *  from 22.1-EVO before 22.1R3-S5 -EVO,  \n  *  from 22.2-EVO before 22.2R3-S3-EVO,  \n  *  from 22.3-EVO before 22.3R3-EVO,  \n  *  from 22.4-EVO before 22.4R2-EVO. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T01:35:25.000000Z"}, {"uuid": "d6bc3a6c-76b2-4c76-9ecf-a7065691acce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39559", "type": "seen", "source": "https://t.me/cvedetector/607", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39559 - An Improper Check for Unusual or Exceptional Condi\", \n  \"Content\": \"CVE ID : CVE-2024-39559 \nPublished : July 10, 2024, 11:15 p.m. | 16\u00a0minutes ago \nDescription : An Improper Check for Unusual or Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS Evolved may allow a network-based unauthenticated attacker to crash the device (vmcore) by sending a specific TCP packet over an established TCP session with MD5 authentication enabled, destined to an accessible port on the device, resulting in a Denial of Service (DoS).\u00a0 The receipt of this packet must occur within a specific timing window outside the attacker's control (i.e., race condition).  \n  \nContinued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.  \n  \nThis issue only affects\u00a0dual RE systems with Nonstop Active Routing (NSR) enabled.  \nExploitation can only occur over TCP sessions with MD5 authentication enabled (e.g., BGP with MD5 authentication).  \n  \nThis issue affects Junos OS Evolved:\u00a0  \n  \n  \n  \n  *  All versions before 21.2R3-S8-EVO,   \n  *  from 21.4-EVO before 21.4R3-S6-EVO,   \n  *  from 22.1-EVO before 22.1R3-S4-EVO,   \n  *  from 22.2-EVO before 22.2R3-S4-EVO,   \n  *  from 22.3-EVO before 22.3R3-S3-EVO,   \n  *  from 22.4-EVO before 22.4R2-S2-EVO, 22.4R3-EVO. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T01:35:24.000000Z"}, {"uuid": "1f0f83ea-90d2-4167-b682-c47d962d4893", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39556", "type": "seen", "source": "https://t.me/cvedetector/610", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39556 - A Stack-Based Buffer Overflow vulnerability in Jun\", \n  \"Content\": \"CVE ID : CVE-2024-39556 \nPublished : July 10, 2024, 11:15 p.m. | 16\u00a0minutes ago \nDescription : A Stack-Based Buffer Overflow vulnerability in Juniper Networks Junos OS and Juniper Networks Junos OS Evolved may allow a local, low-privileged attacker with access to the CLI the ability to load a malicious certificate file, leading to a limited Denial of Service (DoS) or privileged code execution.  \n  \nBy exploiting the 'set security certificates' command with a crafted certificate file, a malicious attacker with access to the CLI could cause a crash of the command management daemon (mgd), limited to the local user's command interpreter, or potentially trigger a stack-based buffer overflow.  \n  \n  \nThis issue affects:  \n  \n\u00a0Junos OS:   \n  \n  \n  *  All versions before 21.4R3-S7,   \n  *  from 22.1 before 22.1R3-S6,   \n  *  from 22.2 before 22.2R3-S4,   \n  *  from 22.3 before 22.3R3-S3,   \n  *  from 22.4 before 22.4R3-S2,   \n  *  from 23.2 before 23.2R2,   \n  *  from 23.4 before 23.4R1-S1, 23.4R2;\u00a0  \n  \n  \n  \n  \nJunos OS Evolved:   \n  \n  \n  *  All versions before 21.4R3-S7-EVO,   \n  *  from 22.1-EVO before 22.1R3-S6-EVO,   \n  *  from 22.2-EVO before 22.2R3-S4-EVO,   \n  *  from 22.3-EVO before 22.3R3-S3-EVO,   \n  *  from 22.4-EVO before 22.4R3-S2-EVO,   \n  *  from 23.2-EVO before 23.2R2-EVO,   \n  *  from 23.4-EVO before 23.4R1-S1-EVO, 23.4R2-EVO. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T01:35:30.000000Z"}, {"uuid": "1c06b6ca-7a57-4a86-babe-37cbb05b7bea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39551", "type": "seen", "source": "https://t.me/cvedetector/680", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39551 - An Uncontrolled Resource Consumption vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39551 \nPublished : July 11, 2024, 5:15 p.m. | 42\u00a0minutes ago \nDescription : An Uncontrolled Resource Consumption vulnerability in the H.323 ALG (Application Layer Gateway) of\u00a0 Juniper Networks Junos OS on SRX Series and MX Series with SPC3 and MS-MPC/MIC, allows an\u00a0unauthenticated network-based attacker to send specific packets causing traffic loss leading to Denial of Service (DoS).\u00a0  \n  \nContinued receipt and processing of these specific packets will sustain the Denial of Service condition.  \n  \nThe memory usage can be monitored using the below command.  \n  \n\u2003\u2003user@host> show usp memory segment sha data objcache jsf\u00a0  \nThis issue affects SRX Series and MX Series with SPC3 and MS-MPC/MIC:\u00a0  \n  \n  *  \u200320.4 before 20.4R3-S10,\u00a0  \n  *  \u200321.2 before 21.2R3-S6,\u00a0  \n  *  \u200321.3 before 21.3R3-S5,\u00a0  \n  *  \u200321.4 before 21.4R3-S6,\u00a0  \n  *  \u200322.1 before 22.1R3-S4,\u00a0  \n  *  \u200322.2 before 22.2R3-S2,\u00a0  \n  *  \u200322.3 before 22.3R3-S1,\u00a0  \n  *  \u200322.4 before 22.4R3,\u00a0  \n  *  \u200323.2 before 23.2R2. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T19:59:54.000000Z"}, {"uuid": "80ae3b9c-a74f-4a17-b65e-be05e0ac7dc1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39553", "type": "seen", "source": "https://t.me/cvedetector/679", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39553 - An Exposure of Resource to Wrong Sphere vulnerabil\", \n  \"Content\": \"CVE ID : CVE-2024-39553 \nPublished : July 11, 2024, 5:15 p.m. | 42\u00a0minutes ago \nDescription : An Exposure of Resource to Wrong Sphere vulnerability in the sampling service\u00a0of Juniper Networks Junos OS Evolved allows an unauthenticated network-based attacker to send arbitrary data to the device, which leads msvcsd process to crash with limited availability impacting Denial of Service (DoS) and allows unauthorized network access to the device, potentially impacting system integrity.  \n  \nThis issue only happens when inline jflow is configured.  \n  \nThis does not impact any forwarding traffic. The impacted services MSVCS-DB app crashes momentarily and recovers by itself.\u00a0  \n  \nThis issue affects Juniper Networks Junos OS Evolved:\u00a0  \n  *  21.4 versions earlier than 21.4R3-S7-EVO;\u00a0  \n  *  22.2 versions earlier than\u00a022.2R3-S3-EVO;  \n  *  22.3 versions earlier than 22.3R3-S2-EVO;  \n  *  22.4 versions earlier than 22.4R3-EVO;  \n  *  23.2 versions earlier than 23.2R1-S2-EVO, 23.2R2-EVO. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T19:59:50.000000Z"}, {"uuid": "6d258d13-b5bf-4ccb-a2a1-ba40bc4d33b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39552", "type": "seen", "source": "https://t.me/cvedetector/678", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39552 - An Improper Handling of Exceptional Conditions vul\", \n  \"Content\": \"CVE ID : CVE-2024-39552 \nPublished : July 11, 2024, 5:15 p.m. | 42\u00a0minutes ago \nDescription : An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows a network based, unauthenticated attacker to cause the RPD process to crash leading to a Denial of Service (DoS).  \n  \nWhen a malformed BGP UPDATE packet is received over an established BGP session, RPD crashes and restarts.  \n  \nContinuous receipt of the malformed BGP UPDATE messages will create a sustained Denial of Service (DoS) condition for impacted devices.  \n  \nThis issue affects eBGP and iBGP, in both IPv4 and IPv6 implementations.  This issue requires a remote attacker to have at least one established BGP session.  \n  \nThis issue affects:  \n   \nJuniper Networks Junos OS:  \n  *  All versions earlier than 20.4R3-S9;  \n  *  21.2 versions earlier than 21.2R3-S7;  \n  *  21.3 versions earlier than 21.3R3-S5;  \n  *  21.4 versions earlier than 21.4R3-S6;  \n  *  22.1 versions earlier than 22.1R3-S4;  \n  *  22.2 versions earlier than 22.2R3-S3;  \n  *  22.3 versions earlier than 22.3R3-S2;  \n  *  22.4 versions earlier than 22.4R3;  \n  *  23.2 versions earlier than 23.2R2.  \n  \n  \n  \nJuniper Networks Junos OS Evolved:  \n  *  All versions earlier than 21.2R3-S7;  \n  *  21.3-EVO versions earlier than 21.3R3-S5;  \n  *  21.4-EVO versions earlier than 21.4R3-S8;  \n  *  22.1-EVO versions earlier than 22.1R3-S4;  \n  *  22.2-EVO versions earlier than 22.2R3-S3;  \n  *  22.3-EVO versions earlier than 22.3R3-S2;  \n  *  22.4-EVO versions earlier than 22.4R3;  \n  *  23.2-EVO versions earlier than 23.2R2. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T19:59:49.000000Z"}, {"uuid": "b34fdc0e-c77a-4055-a1a3-da26075c3e0e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-39554", "type": "seen", "source": "https://t.me/cvedetector/612", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39554 - A Concurrent Execution using Shared Resource with\", \n  \"Content\": \"CVE ID : CVE-2024-39554 \nPublished : July 10, 2024, 11:15 p.m. | 16\u00a0minutes ago \nDescription : A Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability the   \n  \nRouting Protocol Daemon (rpd)  \n  \n of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to inject incremental routing updates when BGP multipath is enabled, causing rpd to crash and restart, resulting in a Denial of Service (DoS). Since this is a timing issue (race condition), the successful exploitation of this vulnerability is outside the attacker's control.\u00a0 However, continued receipt and processing of this packet may create a sustained Denial of Service (DoS) condition.  \n  \nOn all Junos OS and Junos OS Evolved platforms with BGP multipath enabled, a specific multipath calculation removes the original next hop from the multipath lead routes nexthop-set. When this change happens, multipath relies on certain internal timing to record the update.\u00a0 Under certain circumstance and with specific timing, this could result in an rpd crash.  \n  \nThis issue only affects systems with BGP multipath enabled.  \n  \n  \nThis issue affects:  \n  \nJunos OS:   \n  \n  \n  *  All versions of 21.1  \n  *  from 21.2 before 21.2R3-S7,   \n  *  from 21.4 before 21.4R3-S6,   \n  *  from 22.1 before 22.1R3-S5,   \n  *  from 22.2 before 22.2R3-S3,   \n  *  from 22.3 before 22.3R3-S2,   \n  *  from 22.4 before 22.4R3,   \n  *  from 23.2 before 23.2R2.  \n  \n  \n  \n  \nJunos OS Evolved:   \n  \n  \n  *  All versions of 21.1-EVO,  \n  *  All versions of 21.2-EVO,  \n  *  from 21.4-EVO before 21.4R3-S6-EVO,   \n  *  from 22.1-EVO before 22.1R3-S5-EVO,   \n  *  from 22.2-EVO before 22.2R3-S3-EVO,   \n  *  from 22.3-EVO before 22.3R3-S2-EVO,   \n  *  from 22.4-EVO before 22.4R3-EVO,   \n  *  from 23.2-EVO before 23.2R2-EVO.  \n  \n  \n  \nVersions of Junos OS before 21.1R1 are unaffected by this vulnerability.  \nVersions of Junos OS Evolved before 21.1R1-EVO are unaffected by this vulnerability. \nSeverity: 5.9 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T01:35:32.000000Z"}]}