CVE-2024-47506
MEDIUMJuniper Junos OS DoS via ATP Cloud Inspection Deadlock
Title source: llmDescription
A Deadlock vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). When a large amount of traffic is processed by ATP Cloud inspection, a deadlock can occur which will result in a PFE crash and restart. Whether the crash occurs, depends on system internal timing that is outside the attackers control. This issue affects Junos OS on SRX Series: * All versions before 21.3R3-S1, * 21.4 versions before 21.4R3, * 22.1 versions before 22.1R2, * 22.2 versions before 22.2R1-S2, 22.2R2.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
https://supportportal.juniper.net/JSA88137
Scores
CVSS v3
5.9
EPSS
0.0027
EPSS Percentile
50.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-833
Status
published
Products (5)
juniper/junos
21.3 (8 CPE variants)
juniper/junos
21.4 (7 CPE variants)
juniper/junos
22.1 (4 CPE variants)
juniper/junos
22.2 (4 CPE variants)
juniper/junos
< 21.3
Published
Oct 11, 2024
Tracked Since
Feb 18, 2026