CVE-2024-39525 - Vulnerability Details

- Junos OS and Junos OS Evolved: When BGP traceoptions is enabled, receipt of specially crafted BGP packet causes RPD crash

Description

An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker sending a specific BGP packet to cause rpd to crash and restart, resulting in a Denial of Service (DoS). Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.

This issue only affects systems with BGP traceoptions enabled and

requires a BGP session to be already established. Systems without BGP traceoptions enabled are not affected by this issue.

This issue affects iBGP and eBGP, and both IPv4 and IPv6 are affected by this vulnerability.

This issue affects:

Junos OS:

* All versions before 21.2R3-S8,
* from 21.4 before 21.4R3-S8,
* from 22.2 before 22.2R3-S4,
* from 22.3 before 22.3R3-S4,
* from 22.4 before 22.4R3-S3,
* from 23.2 before 23.2R2-S1,
* from 23.4 before 23.4R2;

Junos OS Evolved:

* All versions before 21.2R3-S8-EVO,
* from 21.4-EVO before 21.4R3-S8-EVO,
* from 22.2-EVO before 22.2R3-S4-EVO,
* from 22.3-EVO before 22.3R3-S4-EVO,
* from 22.4-EVO before 22.4R3-S3-EVO,
* from 23.2-EVO before 23.2R2-S1-EVO,
* from 23.4-EVO before 23.4R2-EVO.

Published: 2024-10-09

Score: 8.7 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Juniper Networks

Junos OS

unaffected

Version	Status	Constraints
`0`	affected	< 21.2R3-S8
`21.4`	affected	< 21.4R3-S8
`22.2`	affected	< 22.2R3-S4
`22.3`	affected	< 22.3R3-S4
`22.4`	affected	< 22.4R3-S3
`23.2`	affected	< 23.2R2-S1
`23.4`	affected	< 23.4R2

Juniper Networks

Junos OS Evolved

unaffected

Version	Status	Constraints
`0`	affected	< 21.2R3-S8-EVO
`21.4-EVO`	affected	< 21.4R3-S8-EVO
`22.2-EVO`	affected	< 22.2R3-S4-EVO
`22.3-EVO`	affected	< 22.3R3-S4-EVO
`22.4-EVO`	affected	< 22.4R3-S3-EVO
`23.2-EVO`	affected	< 23.2R2-S1-EVO
`23.4-EVO`	affected	< 23.4R2-EVO

Configuration 1 [-]

OR	cpe:2.3:o:juniper:junos::::::::
	cpe:2.3:o:juniper:junos:21.2:-::::::
	cpe:2.3:o:juniper:junos:21.2:r1::::::
	cpe:2.3:o:juniper:junos:21.2:r1-s1::::::
	cpe:2.3:o:juniper:junos:21.2:r1-s2::::::
	cpe:2.3:o:juniper:junos:21.2:r2::::::
	cpe:2.3:o:juniper:junos:21.2:r2-s1::::::
	cpe:2.3:o:juniper:junos:21.2:r2-s2::::::
	cpe:2.3:o:juniper:junos:21.2:r3::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s1::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s2::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s3::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s4::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s5::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s6::::::
	cpe:2.3:o:juniper:junos:21.2:r3-s7::::::
	cpe:2.3:o:juniper:junos:21.4:-::::::
	cpe:2.3:o:juniper:junos:21.4:r1::::::
	cpe:2.3:o:juniper:junos:21.4:r1-s1::::::
	cpe:2.3:o:juniper:junos:21.4:r1-s2::::::
	cpe:2.3:o:juniper:junos:21.4:r2::::::
	cpe:2.3:o:juniper:junos:21.4:r2-s1::::::
	cpe:2.3:o:juniper:junos:21.4:r2-s2::::::
	cpe:2.3:o:juniper:junos:21.4:r3::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s1::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s2::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s3::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s4::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s5::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s6::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s7::::::
	cpe:2.3:o:juniper:junos:22.2:-::::::
	cpe:2.3:o:juniper:junos:22.2:r1::::::
	cpe:2.3:o:juniper:junos:22.2:r1-s1::::::
	cpe:2.3:o:juniper:junos:22.2:r1-s2::::::
	cpe:2.3:o:juniper:junos:22.2:r2::::::
	cpe:2.3:o:juniper:junos:22.2:r2-s1::::::
	cpe:2.3:o:juniper:junos:22.2:r2-s2::::::
	cpe:2.3:o:juniper:junos:22.2:r3::::::
	cpe:2.3:o:juniper:junos:22.2:r3-s1::::::
	cpe:2.3:o:juniper:junos:22.2:r3-s2::::::
	cpe:2.3:o:juniper:junos:22.2:r3-s3::::::
	cpe:2.3:o:juniper:junos:22.3:-::::::
	cpe:2.3:o:juniper:junos:22.3:r1::::::
	cpe:2.3:o:juniper:junos:22.3:r1-s1::::::
	cpe:2.3:o:juniper:junos:22.3:r1-s2::::::
	cpe:2.3:o:juniper:junos:22.3:r2::::::
	cpe:2.3:o:juniper:junos:22.3:r2-s1::::::
	cpe:2.3:o:juniper:junos:22.3:r2-s2::::::
	cpe:2.3:o:juniper:junos:22.3:r3::::::
	cpe:2.3:o:juniper:junos:22.3:r3-s1::::::
	cpe:2.3:o:juniper:junos:22.3:r3-s2::::::
	cpe:2.3:o:juniper:junos:22.3:r3-s3::::::
	cpe:2.3:o:juniper:junos:22.4:-::::::
	cpe:2.3:o:juniper:junos:22.4:r1::::::
	cpe:2.3:o:juniper:junos:22.4:r1-s1::::::
	cpe:2.3:o:juniper:junos:22.4:r1-s2::::::
	cpe:2.3:o:juniper:junos:22.4:r2::::::
	cpe:2.3:o:juniper:junos:22.4:r2-s1::::::
	cpe:2.3:o:juniper:junos:22.4:r2-s2::::::
	cpe:2.3:o:juniper:junos:22.4:r3::::::
	cpe:2.3:o:juniper:junos:22.4:r3-s1::::::
	cpe:2.3:o:juniper:junos:22.4:r3-s2::::::
	cpe:2.3:o:juniper:junos:23.2:-::::::
cpe:2.3:o:juniper:junos:23.2:r1::::::
cpe:2.3:o:juniper:junos:23.2:r1-s1::::::
cpe:2.3:o:juniper:junos:23.2:r1-s2::::::
cpe:2.3:o:juniper:junos:23.2:r2::::::
cpe:2.3:o:juniper:junos:23.4:-::::::
cpe:2.3:o:juniper:junos:23.4:r1::::::
cpe:2.3:o:juniper:junos:23.4:r1-s1::::::
cpe:2.3:o:juniper:junos:23.4:r1-s2::::::
cpe:2.3:o:juniper:junos_os_evolved::::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:-::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r1::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r1-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r1-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r2::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r2-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r2-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r3::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s3::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s4::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s5::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s6::::::
cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s7::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:-::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r1::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r2::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s3::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s4::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s5::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s6::::::
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s7::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:-::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r1-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r1-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r3::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s3::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:-::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r2-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r2-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r3::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r3-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r3-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.3:r3-s3::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:-::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:r1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:r1-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:r1-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:r2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:r3::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:r3-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:22.4:r3-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:23.2:-::::::
cpe:2.3:o:juniper:junos_os_evolved:23.2:r1::::::
cpe:2.3:o:juniper:junos_os_evolved:23.2:r1-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:23.2:r1-s2::::::
cpe:2.3:o:juniper:junos_os_evolved:23.2:r2::::::
cpe:2.3:o:juniper:junos_os_evolved:23.4:-::::::
cpe:2.3:o:juniper:junos_os_evolved:23.4:r1::::::
cpe:2.3:o:juniper:junos_os_evolved:23.4:r1-s1::::::
cpe:2.3:o:juniper:junos_os_evolved:23.4:r1-s2::::::

No data.

No data available yet.

Remediation

Vendor Solution

The following software releases have been updated to resolve this specific issue: Junos OS 21.2R3-S8, 21.4R3-S8, 22.2R3-S4, 22.3R3-S4*, 22.4R3-S3, 23.2R2-S1, 23.4R2, 24.2R1, and all subsequent releases. Junos OS Evolved 21.2R3-S8-EVO, 21.4R3-S8-EVO, 22.2R3-S4-EVO, 22.3R3-S4-EVO*, 22.4R3-S3-EVO, 23.2R2-S1-EVO, 23.4R2-EVO, 24.2R1-EVO, and all subsequent releases. *Future release

Vendor Workaround

Disable BGP traceoptions if they are not being used for active troubleshooting.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2024-38051	An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker sending a specific BGP packet to cause rpd to crash and restart, resulting in a Denial of Service (DoS). Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. This issue only affects systems with BGP traceoptions enabled and requires a BGP session to be already established. Systems without BGP traceoptions enabled are not affected by this issue. This issue affects iBGP and eBGP, and both IPv4 and IPv6 are affected by this vulnerability. This issue affects: Junos OS: * All versions before 21.2R3-S8, * from 21.4 before 21.4R3-S8, * from 22.2 before 22.2R3-S4, * from 22.3 before 22.3R3-S4, * from 22.4 before 22.4R3-S3, * from 23.2 before 23.2R2-S1, * from 23.4 before 23.4R2; Junos OS Evolved: * All versions before 21.2R3-S8-EVO, * from 21.4-EVO before 21.4R3-S8-EVO, * from 22.2-EVO before 22.2R3-S4-EVO, * from 22.3-EVO before 22.3R3-S4-EVO, * from 22.4-EVO before 22.4R3-S3-EVO, * from 23.2-EVO before 23.2R2-S1-EVO, * from 23.4-EVO before 23.4R2-EVO.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact Low

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00381.

Exploitation none

Automatable yes

Technical Impact partial

References

Link	Providers
https://supportportal.juniper.net/JSA88102
https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/traceoptions-edit-protocols-bgp.html

History

Fri, 23 Jan 2026 19:30:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:2.3:o:juniper:junos:21.2:-:::::: cpe:2.3:o:juniper:junos:21.2:r1-s1:::::: cpe:2.3:o:juniper:junos:21.2:r1-s2:::::: cpe:2.3:o:juniper:junos:21.2:r1:::::: cpe:2.3:o:juniper:junos:21.2:r2-s1:::::: cpe:2.3:o:juniper:junos:21.2:r2-s2:::::: cpe:2.3:o:juniper:junos:21.2:r2:::::: cpe:2.3:o:juniper:junos:21.2:r3-s1:::::: cpe:2.3:o:juniper:junos:21.2:r3-s2:::::: cpe:2.3:o:juniper:junos:21.2:r3-s3:::::: cpe:2.3:o:juniper:junos:21.2:r3-s4:::::: cpe:2.3:o:juniper:junos:21.2:r3-s5:::::: cpe:2.3:o:juniper:junos:21.2:r3-s6:::::: cpe:2.3:o:juniper:junos:21.2:r3-s7:::::: cpe:2.3:o:juniper:junos:21.2:r3:::::: cpe:2.3:o:juniper:junos:21.4:-:::::: cpe:2.3:o:juniper:junos:21.4:r1-s1:::::: cpe:2.3:o:juniper:junos:21.4:r1-s2:::::: cpe:2.3:o:juniper:junos:21.4:r1:::::: cpe:2.3:o:juniper:junos:21.4:r2-s1:::::: cpe:2.3:o:juniper:junos:21.4:r2-s2:::::: cpe:2.3:o:juniper:junos:21.4:r2:::::: cpe:2.3:o:juniper:junos:21.4:r3-s1:::::: cpe:2.3:o:juniper:junos:21.4:r3-s2:::::: cpe:2.3:o:juniper:junos:21.4:r3-s3:::::: cpe:2.3:o:juniper:junos:21.4:r3-s4:::::: cpe:2.3:o:juniper:junos:21.4:r3-s5:::::: cpe:2.3:o:juniper:junos:21.4:r3-s6:::::: cpe:2.3:o:juniper:junos:21.4:r3-s7:::::: cpe:2.3:o:juniper:junos:21.4:r3:::::: cpe:2.3:o:juniper:junos:22.2:-:::::: cpe:2.3:o:juniper:junos:22.2:r1-s1:::::: cpe:2.3:o:juniper:junos:22.2:r1-s2:::::: cpe:2.3:o:juniper:junos:22.2:r1:::::: cpe:2.3:o:juniper:junos:22.2:r2-s1:::::: cpe:2.3:o:juniper:junos:22.2:r2-s2:::::: cpe:2.3:o:juniper:junos:22.2:r2:::::: cpe:2.3:o:juniper:junos:22.2:r3-s1:::::: cpe:2.3:o:juniper:junos:22.2:r3-s2:::::: cpe:2.3:o:juniper:junos:22.2:r3-s3:::::: cpe:2.3:o:juniper:junos:22.2:r3:::::: cpe:2.3:o:juniper:junos:22.3:-:::::: cpe:2.3:o:juniper:junos:22.3:r1-s1:::::: cpe:2.3:o:juniper:junos:22.3:r1-s2:::::: cpe:2.3:o:juniper:junos:22.3:r1:::::: cpe:2.3:o:juniper:junos:22.3:r2-s1:::::: cpe:2.3:o:juniper:junos:22.3:r2-s2:::::: cpe:2.3:o:juniper:junos:22.3:r2:::::: cpe:2.3:o:juniper:junos:22.3:r3-s1:::::: cpe:2.3:o:juniper:junos:22.3:r3-s2:::::: cpe:2.3:o:juniper:junos:22.3:r3-s3:::::: cpe:2.3:o:juniper:junos:22.3:r3:::::: cpe:2.3:o:juniper:junos:22.4:-:::::: cpe:2.3:o:juniper:junos:22.4:r1-s1:::::: cpe:2.3:o:juniper:junos:22.4:r1-s2:::::: cpe:2.3:o:juniper:junos:22.4:r1:::::: cpe:2.3:o:juniper:junos:22.4:r2-s1:::::: cpe:2.3:o:juniper:junos:22.4:r2-s2:::::: cpe:2.3:o:juniper:junos:22.4:r2:::::: cpe:2.3:o:juniper:junos:22.4:r3-s1:::::: cpe:2.3:o:juniper:junos:22.4:r3-s2:::::: cpe:2.3:o:juniper:junos:22.4:r3:::::: cpe:2.3:o:juniper:junos:23.2:-:::::: cpe:2.3:o:juniper:junos:23.2:r1-s1:::::: cpe:2.3:o:juniper:junos:23.2:r1-s2:::::: cpe:2.3:o:juniper:junos:23.2:r1:::::: cpe:2.3:o:juniper:junos:23.2:r2:::::: cpe:2.3:o:juniper:junos:23.4:-:::::: cpe:2.3:o:juniper:junos:23.4:r1-s1:::::: cpe:2.3:o:juniper:junos:23.4:r1-s2:::::: cpe:2.3:o:juniper:junos:23.4:r1:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:-:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r1-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r1-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r1:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r2-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r2-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r2:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s3:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s4:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s5:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s6:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s7:::::: cpe:2.3:o:juniper:junos_os_evolved:21.2:r3:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:-:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r1:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r2:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s3:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s4:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s5:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s6:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s7:::::: cpe:2.3:o:juniper:junos_os_evolved:21.4:r3:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:-:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r1-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r1-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s3:::::: cpe:2.3:o:juniper:junos_os_evolved:22.2:r3:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:-:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r2-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r2-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r3-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r3-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r3-s3:::::: cpe:2.3:o:juniper:junos_os_evolved:22.3:r3:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:-:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:r1-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:r1-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:r1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:r2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:r3-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:r3-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:22.4:r3:::::: cpe:2.3:o:juniper:junos_os_evolved:23.2:-:::::: cpe:2.3:o:juniper:junos_os_evolved:23.2:r1-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:23.2:r1-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:23.2:r1:::::: cpe:2.3:o:juniper:junos_os_evolved:23.2:r2:::::: cpe:2.3:o:juniper:junos_os_evolved:23.4:-:::::: cpe:2.3:o:juniper:junos_os_evolved:23.4:r1-s1:::::: cpe:2.3:o:juniper:junos_os_evolved:23.4:r1-s2:::::: cpe:2.3:o:juniper:junos_os_evolved:23.4:r1::::::

Wed, 09 Oct 2024 21:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Juniper Juniper junos Juniper junos Os Evolved
CPEs		cpe:2.3:o:juniper:junos:::::::: cpe:2.3:o:juniper:junos_os_evolved::::::::
Vendors & Products		Juniper Juniper junos Juniper junos Os Evolved
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 09 Oct 2024 20:15:00 +0000

Type	Values Removed	Values Added
Description		An Improper Handling of Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker sending a specific BGP packet to cause rpd to crash and restart, resulting in a Denial of Service (DoS). Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. This issue only affects systems with BGP traceoptions enabled and requires a BGP session to be already established. Systems without BGP traceoptions enabled are not affected by this issue. This issue affects iBGP and eBGP, and both IPv4 and IPv6 are affected by this vulnerability. This issue affects: Junos OS: * All versions before 21.2R3-S8, * from 21.4 before 21.4R3-S8, * from 22.2 before 22.2R3-S4, * from 22.3 before 22.3R3-S4, * from 22.4 before 22.4R3-S3, * from 23.2 before 23.2R2-S1, * from 23.4 before 23.4R2; Junos OS Evolved: * All versions before 21.2R3-S8-EVO, * from 21.4-EVO before 21.4R3-S8-EVO, * from 22.2-EVO before 22.2R3-S4-EVO, * from 22.3-EVO before 22.3R3-S4-EVO, * from 22.4-EVO before 22.4R3-S3-EVO, * from 23.2-EVO before 23.2R2-S1-EVO, * from 23.4-EVO before 23.4R2-EVO.
Title		Junos OS and Junos OS Evolved: When BGP traceoptions is enabled, receipt of specially crafted BGP packet causes RPD crash
Weaknesses		CWE-755
References		https://supportportal.juniper.net/JSA88102 https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/traceoptions-edit-protocols-bgp.html
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}` cvssV4_0 `{'score': 8.7, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L'}`

Subscriptions

Juniper Junos Junos Os Evolved

MITRE

Status: PUBLISHED

Assigner: juniper

Published: 2024-10-09T20:01:20.604Z

Updated: 2024-10-11T15:15:51.339Z

Reserved: 2024-06-25T15:12:53.240Z

Link: CVE-2024-39525

Vulnrichment

Updated: 2024-10-09T20:54:22.962Z

NVD

Status : Analyzed

Published: 2024-10-09T20:15:08.920

Modified: 2026-01-23T19:22:23.210

Link: CVE-2024-39525

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-755

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact Low

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object