What is the severity of CVE-2024-21594?

CVE-2024-21594 is rated as a medium severity vulnerability due to its potential to cause Denial of Service (DoS) for authenticated, low privileged local attackers.

How do I fix CVE-2024-21594?

To mitigate CVE-2024-21594, it is recommended to update Junos OS to the latest patched version that addresses this vulnerability.

What systems are affected by CVE-2024-21594?

CVE-2024-21594 impacts various versions of Juniper Networks Junos OS, particularly the SRX 5000 Series devices running affected software versions up to 22.3.

Can CVE-2024-21594 be exploited remotely?

CVE-2024-21594 requires local access for exploitation, as an authenticated low privileged local attacker needs to execute a specific command.

What are the potential impacts of CVE-2024-21594?

The primary impact of CVE-2024-21594 is a Denial of Service (DoS), leading to service disruption on affected devices.

Vulnerability/
CVE-2024-21594

medium

5.5

CWE

122 119 787

EPSS

0.042%

12/1/2024

18/1/2024

CVE-2024-21594: Junos OS: SRX 5000 Series: Repeated execution of a specific CLI command causes a flowd crash

First published: Fri Jan 12 2024(Updated: )

A Heap-based Buffer Overflow vulnerability in the Network Services Daemon (NSD) of Juniper Networks Junos OS allows authenticated, low privileged, local attacker to cause a Denial of Service (DoS). On an SRX 5000 Series device, when executing a specific command repeatedly, memory is corrupted, which leads to a Flow Processing Daemon (flowd) crash. The NSD process has to be restarted to restore services. If this issue occurs, it can be checked with the following command: user@host> request security policies check The following log message can also be observed: Error: policies are out of sync for PFE node<number>.fpc<number>.pic<number>. This issue affects: Juniper Networks Junos OS on SRX 5000 Series * All versions earlier than 20.4R3-S6; * 21.1 versions earlier than 21.1R3-S5; * 21.2 versions earlier than 21.2R3-S4; * 21.3 versions earlier than 21.3R3-S3; * 21.4 versions earlier than 21.4R3-S3; * 22.1 versions earlier than 22.1R3-S1; * 22.2 versions earlier than 22.2R3; * 22.3 versions earlier than 22.3R2.

Credit: sirt@juniper.net

Affected Software	Affected Version	How to fix
Juniper Junos	<20.4
Juniper Junos	=20.4
Juniper Junos	=20.4-r1
Juniper Junos	=20.4-r1-s1
Juniper Junos	=20.4-r2
Juniper Junos	=20.4-r2-s1
Juniper Junos	=20.4-r2-s2
Juniper Junos	=20.4-r3
Juniper Junos	=20.4-r3-s1
Juniper Junos	=20.4-r3-s2
Juniper Junos	=20.4-r3-s3
Juniper Junos	=20.4-r3-s4
Juniper Junos	=20.4-r3-s5
Juniper Junos	=21.1
Juniper Junos	=21.1-r1
Juniper Junos	=21.1-r1-s1
Juniper Junos	=21.1-r2
Juniper Junos	=21.1-r2-s1
Juniper Junos	=21.1-r2-s2
Juniper Junos	=21.1-r3
Juniper Junos	=21.1-r3-s1
Juniper Junos	=21.1-r3-s2
Juniper Junos	=21.1-r3-s3
Juniper Junos	=21.1-r3-s4
Juniper Junos	=21.2
Juniper Junos	=21.2-r1
Juniper Junos	=21.2-r1-s1
Juniper Junos	=21.2-r1-s2
Juniper Junos	=21.2-r2
Juniper Junos	=21.2-r2-s1
Juniper Junos	=21.2-r2-s2
Juniper Junos	=21.2-r3
Juniper Junos	=21.2-r3-s1
Juniper Junos	=21.2-r3-s2
Juniper Junos	=21.2-r3-s3
Juniper Junos	=21.3
Juniper Junos	=21.3-r1
Juniper Junos	=21.3-r1-s1
Juniper Junos	=21.3-r1-s2
Juniper Junos	=21.3-r2
Juniper Junos	=21.3-r2-s1
Juniper Junos	=21.3-r2-s2
Juniper Junos	=21.3-r3
Juniper Junos	=21.3-r3-s1
Juniper Junos	=21.3-r3-s2
Juniper Junos	=21.4
Juniper Junos	=21.4-r1
Juniper Junos	=21.4-r1-s1
Juniper Junos	=21.4-r1-s2
Juniper Junos	=21.4-r2
Juniper Junos	=21.4-r2-s1
Juniper Junos	=21.4-r2-s2
Juniper Junos	=21.4-r3
Juniper Junos	=21.4-r3-s1
Juniper Junos	=21.4-r3-s2
Juniper Junos	=22.1
Juniper Junos	=22.1-r1
Juniper Junos	=22.1-r1-s1
Juniper Junos	=22.1-r1-s2
Juniper Junos	=22.1-r2
Juniper Junos	=22.1-r2-s1
Juniper Junos	=22.1-r2-s2
Juniper Junos	=22.1-r3
Juniper Junos	=22.2
Juniper Junos	=22.2-r1
Juniper Junos	=22.2-r1-s1
Juniper Junos	=22.2-r1-s2
Juniper Junos	=22.2-r2
Juniper Junos	=22.2-r2-s1
Juniper Junos	=22.2-r2-s2
Juniper Junos	=22.3
Juniper Junos	=22.3-r1
Juniper Junos	=22.3-r1-s1
Juniper Junos	=22.3-r1-s2

Remedy

The following software releases have been updated to resolve this specific issue: Junos OS 20.4R3-S6, 21.1R3-S5, 21.2R3-S4, 21.3R3-S3, 21.3R3-S4, 21.4R3-S3, 22.1R3-S1, 22.2R3, 22.3R2, 22.4R1, 22.4R2, 23.1R1, and all subsequent releases.

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2024-21594?
CVE-2024-21594 is rated as a medium severity vulnerability due to its potential to cause Denial of Service (DoS) for authenticated, low privileged local attackers.
How do I fix CVE-2024-21594?
To mitigate CVE-2024-21594, it is recommended to update Junos OS to the latest patched version that addresses this vulnerability.
What systems are affected by CVE-2024-21594?
CVE-2024-21594 impacts various versions of Juniper Networks Junos OS, particularly the SRX 5000 Series devices running affected software versions up to 22.3.
Can CVE-2024-21594 be exploited remotely?
CVE-2024-21594 requires local access for exploitation, as an authenticated low privileged local attacker needs to execute a specific command.
What are the potential impacts of CVE-2024-21594?
The primary impact of CVE-2024-21594 is a Denial of Service (DoS), leading to service disruption on affected devices.

collector/mitre-cve
source/MITRE
agent/remedy
agent/severity
agent/references
agent/title
agent/author
agent/type
agent/first-publish-date
agent/description
agent/weakness
agent/last-modified-date
agent/softwarecombine
agent/event
collector/epss-latest
source/FIRST
agent/epss
agent/source
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/juniper
canonical/juniper junos
version/juniper junos/20.4
version/juniper junos/20.4-r1
version/juniper junos/20.4-r1-s1
version/juniper junos/20.4-r2
version/juniper junos/20.4-r2-s1
version/juniper junos/20.4-r2-s2
version/juniper junos/20.4-r3
version/juniper junos/20.4-r3-s1
version/juniper junos/20.4-r3-s2
version/juniper junos/20.4-r3-s3
version/juniper junos/20.4-r3-s4
version/juniper junos/20.4-r3-s5
version/juniper junos/21.1
version/juniper junos/21.1-r1
version/juniper junos/21.1-r1-s1
version/juniper junos/21.1-r2
version/juniper junos/21.1-r2-s1
version/juniper junos/21.1-r2-s2
version/juniper junos/21.1-r3
version/juniper junos/21.1-r3-s1
version/juniper junos/21.1-r3-s2
version/juniper junos/21.1-r3-s3
version/juniper junos/21.1-r3-s4
version/juniper junos/21.2
version/juniper junos/21.2-r1
version/juniper junos/21.2-r1-s1
version/juniper junos/21.2-r1-s2
version/juniper junos/21.2-r2
version/juniper junos/21.2-r2-s1
version/juniper junos/21.2-r2-s2
version/juniper junos/21.2-r3
version/juniper junos/21.2-r3-s1
version/juniper junos/21.2-r3-s2
version/juniper junos/21.2-r3-s3
version/juniper junos/21.3
version/juniper junos/21.3-r1
version/juniper junos/21.3-r1-s1
version/juniper junos/21.3-r1-s2
version/juniper junos/21.3-r2
version/juniper junos/21.3-r2-s1
version/juniper junos/21.3-r2-s2
version/juniper junos/21.3-r3
version/juniper junos/21.3-r3-s1
version/juniper junos/21.3-r3-s2
version/juniper junos/21.4
version/juniper junos/21.4-r1
version/juniper junos/21.4-r1-s1
version/juniper junos/21.4-r1-s2
version/juniper junos/21.4-r2
version/juniper junos/21.4-r2-s1
version/juniper junos/21.4-r2-s2
version/juniper junos/21.4-r3
version/juniper junos/21.4-r3-s1
version/juniper junos/21.4-r3-s2
version/juniper junos/22.1
version/juniper junos/22.1-r1
version/juniper junos/22.1-r1-s1
version/juniper junos/22.1-r1-s2
version/juniper junos/22.1-r2
version/juniper junos/22.1-r2-s1
version/juniper junos/22.1-r2-s2
version/juniper junos/22.1-r3
version/juniper junos/22.2
version/juniper junos/22.2-r1
version/juniper junos/22.2-r1-s1
version/juniper junos/22.2-r1-s2
version/juniper junos/22.2-r2
version/juniper junos/22.2-r2-s1
version/juniper junos/22.2-r2-s2
version/juniper junos/22.3
version/juniper junos/22.3-r1
version/juniper junos/22.3-r1-s1
version/juniper junos/22.3-r1-s2