CVE-2024-21607

CVSS 3.1 Score 5.3 of 10 (medium)

Details

Published Jan 12, 2024
Updated: Jan 18, 2024
CWE ID 447

Summary

CVE-2024-21607 is a vulnerability that affects Juniper Networks Junos OS on MX Series and EX9200 Series. It is an unsupported feature in the UI vulnerability that allows an unauthenticated, network-based attacker to cause partial impact to the integrity of the device. This vulnerability occurs when the "tcp-reset" option is added to the "reject" action in an IPv6 filter, causing packets to be permitted instead of rejected. The issue can be remediated by treating the payload-protocol match the same as a "next-header" match. It is important to note that this vulnerability does not affect IPv4 firewall filters. The potential danger posed by this vulnerability includes a medium base severity rating, with a base score of 5.3 and an impact score of 1.4.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Prioritize, Pinpoint, and Act to Prevent Vulnerability Exploits with Recorded Future

Note: This is just a basic overview providing quick insights into CVE-2024-21607 information. Gain full access to comprehensive CVE data, third party vulnerabilities, compromised credentials and more with Recorded Future
  • Gain complete coverage of your cyber, third party, and physical attack surface
  • Proactively mitigate threats before they turn into costly attacks
  • Make fast, effective, data-driven decisions

Book your demo

Sign in

Back to Vulnerability Database