CVE-2024-47499

Summary

CVE-2024-47499 is a Denial of Service vulnerability impacting Juniper Networks Junos OS and Junos OS Evolved. An unauthenticated attacker can exploit this Improper Check for Unusual or Exceptional Conditions flaw in the routing protocol daemon (RPD) by sending a malformed AS PATH attribute in a BGP update. This can cause an RPD crash and restart, leading to a DoS condition. Affected versions include all releases before 21.2R3-S8, 21.4 versions before 21.4R3-S8, 22.2 versions before 22.2R3-S4, 22.3 versions before 22.3R3-S3, 22.4 versions before 22.4R3-S2, 23.2 versions before 23.2R2-S1, 23.4 versions before 23.4R1-S2, and 23.4R2 for Junos OS, as well as all versions before 21.2R3-S8-EVO, 21.4 versions before 21.4R3-S8-EVO, 22.2 versions before 22.2R3-S4-EVO, 22.3 versions before 22.3R3-S3-EVO, 22.4 versions before 22.4R3-S2-EVO, 23.2 versions before 23.2R2-S1-EVO, 23.4 versions before 23.4R1-S2-EVO, and 23.4R2-EVO for Junos OS Evolved.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.