CVE-2024-39519: Junos OS Evolved: ACX 7000 Series: Multicast traffic is looped in a multihoming EVPN MPLS scenario

First published: Thu Jul 11 2024(Updated: )

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (DoS). On all ACX 7000 Series platforms running Junos OS Evolved, and configured with IRBs, if a Customer Edge device (CE) device is dual homed to two Provider Edge devices (PE) a traffic loop will occur when the CE sends multicast packets. This issue can be triggered by IPv4 and IPv6 traffic. This issue affects Junos OS Evolved:  All versions from 22.2R1-EVO and later versions before 22.4R2-EVO, This issue does not affect Junos OS Evolved versions before 22.1R1-EVO.

Credit: sirt@juniper.net

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/title
• agent/references
• agent/description
• agent/first-publish-date
• agent/type
• agent/author
• agent/weakness
• agent/severity
• agent/event
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/softwarecombine
• agent/tags
• collector/nvd-api
• source/NVD
• agent/software-canonical-lookup
• agent/software-canonical-lookup-request
• vendor/juniper
• canonical/juniper junos os evolved
• version/juniper junos os evolved/22.2
• version/juniper junos os evolved/22.4
• version/juniper junos os evolved/22.4-r1
• version/juniper junos os evolved/22.4-r1-s1
• version/juniper junos os evolved/22.4-r1-s2
• canonical/juniper acx7024
• canonical/juniper acx7024x
• canonical/juniper acx7100-32c
• canonical/juniper acx7100-48l
• canonical/juniper acx7332
• canonical/juniper acx7348
• canonical/juniper acx7509