CVE-2024-47507

CVSS 3.1 Score 5.8 of 10 (medium)

Details

Published Oct 11, 2024

Updated: Oct 15, 2024

CWE ID 754

Summary

CVE-2024-47507 is an unauthenticated network-based vulnerability impacting Juniper Networks Junos OS and Junos OS Evolved. This issue, classified as an Improper Check for Unusual or Exceptional Conditions vulnerability, allows attackers to cause integrity issues on downstream devices. The affected software component is the routing protocol daemon (rpd), which accepts and propagates BGP update messages containing aggregator attributes with an ASN value of zero (0). This can lead to issues for downstream BGP peers receiving these messages. The vulnerability affects various versions of Junos OS and Junos OS Evolved, including all versions before 21.4R3-S6, 22.2 versions before 22.2R3-S3, 22.4 versions before 22.4R3 for Junos OS, and all versions before 21.4R3-S7-EVO, 22.2 versions before 22.2R3-S4-EVO, and 22.4 versions before 22.4R3-EVO for Junos OS Evolved.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Russia-Aligned TAG-110 Targets Tajikistan with Macro-Enabled Word Documents

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Know What Matters

For Customers

For Partners

CVE-2024-47507

CVSS 3.1 Score 5.8 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations