CVE-2024-21613

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 12, 2024
Updated: Jan 19, 2024
CWE ID 401

Summary

CVE-2024-21613 is a vulnerability categorized as "Missing Release of Memory after Effective Lifetime" in the Routing Protocol Daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved. This vulnerability allows an unauthenticated attacker who is adjacent to the network to cause an rpd crash, leading to a Denial of Service (DoS) situation. The vulnerability affects multiple versions of Junos OS and Junos OS Evolved, including versions earlier than 21.2R3-S3, 21.3R3-S5, 21.4R3-S3, 22.1R3, and 22.2R3. To mitigate this vulnerability, it is recommended to update the affected systems to versions that are equal or later than the specified fixed releases for each platform version. The potential danger posed by this vulnerability is a complete disruption of network services due to the crash and restart of the rpd process.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-21613 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options