CVE-2024-47508

Summary

CVE-2024-47508 is a resource exhaustion vulnerability impacting the PFE management daemon (evo-pfemand) in Juniper Networks Junos OS Evolved. An authenticated, network-based attacker can trigger a Guid Space leak by executing specific SNMP GET operations or low-privileged CLI commands, resulting in a Denial of Service (DoS) by causing FPCs to hang and requiring manual restart. The leak can be monitored through the "show platform application-info allocations app evo-pfemand/evo-pfemand" command, with constantly increasing Guids indicating the issue. Affected Junos OS Evolved versions include all those before 21.2R3-S8-EVO, 21.3 versions before 21.3R3-EVO, 21.4 versions before 22.1R2-EVO, and 22.1 versions before 22.1R1-S1-EVO and 22.1R2-EVO. This vulnerability is distinct from CVE-2024-47505 and CVE-2024-47509, although they share similarities.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.