Description

An Incorrect Behavior Order vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on EX4300 Series allows an unauthenticated, network-based attacker to cause an integrity impact to networks downstream of the vulnerable device. When an output firewall filter is applied to an interface it doesn't recognize matching packets but permits any traffic. This issue affects Junos OS 21.4 releases from 21.4R1 earlier than 21.4R3-S6. This issue does not affect Junos OS releases earlier than 21.4R1.

INFO

Published Date :

2024-04-12T15:24:09.806Z

Last Modified :

2024-08-02T01:32:07.280Z

Source :

juniper
AFFECTED PRODUCTS

The following products are affected by CVE-2024-30389 vulnerability.

Vendors Products
Juniper
  • Ex4300
  • Ex4300-24p
  • Ex4300-24p-s
  • Ex4300-24t
  • Ex4300-24t-s
  • Ex4300-32f
  • Ex4300-32f-dc
  • Ex4300-32f-s
  • Ex4300-48mp
  • Ex4300-48mp-s
  • Ex4300-48p
  • Ex4300-48p-s
  • Ex4300-48t
  • Ex4300-48t-afi
  • Ex4300-48t-dc
  • Ex4300-48t-dc-afi
  • Ex4300-48t-s
  • Junos
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-30389.

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact