CVE-2024-47506
MEDIUMDescription
A Deadlock vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). When a large amount of traffic is processed by ATP Cloud inspection, a deadlock can occur which will result in a PFE crash and restart. Whether the crash occurs, depends on system internal timing that is outside the attackers control. This issue affects Junos OS on SRX Series: * All versions before 21.3R3-S1, * 21.4 versions before 21.4R3, * 22.1 versions before 22.1R2, * 22.2 versions before 22.2R1-S2, 22.2R2.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | junos |
| juniper | srx1500 |
| juniper | srx1600 |
| juniper | srx2300 |
| juniper | srx300 |
| juniper | srx320 |
| juniper | srx340 |
| juniper | srx345 |
| juniper | srx380 |
| juniper | srx4100 |
| juniper | srx4120 |
| juniper | srx4200 |
| juniper | srx4300 |
| juniper | srx4600 |
| juniper | srx4700 |
| juniper | srx5400 |
| juniper | srx5600 |
| juniper | srx5800 |
References
Advisories & Patches
Frequently Asked Questions
What is CVE-2024-47506? +
How severe is CVE-2024-47506? +
What products are affected by CVE-2024-47506? +
How do I check if I'm vulnerable to CVE-2024-47506? +
Related Vulnerabilities
Webserver crash caused by scanning on TCP port 80 in Softing Industrial Automation GmbH gateways and switch.This issue affects smartLink …
When setting up interrupt remapping for legacy PCI(-X) devices, including PCI(-X) bridges, a lookup of the upstream bridge is required. …
Copyparty is a portable file server. Versions prior to 1.18.9, the filter parameter for the "Recent Uploads" page allows arbitrary …
Deadlock in PAM automatic check-in feature in Devolutions Server allows a password to remain valid beyond the end of its …
Windows Security Account Manager (SAM) Denial of Service Vulnerability
IBM Db2 for Linux 12.1.0, 12.1.1, and 12.1.2 could allow an unauthenticated user to cause a denial of service due …