What is the severity of CVE-2024-39534?

CVE-2024-39534 is categorized as a high severity vulnerability due to its potential for unauthorized access.

How do I fix CVE-2024-39534?

To fix CVE-2024-39534, users should upgrade to a fixed version of Junos OS Evolved that addresses this vulnerability.

Who is affected by CVE-2024-39534?

CVE-2024-39534 affects users of Juniper Networks Junos OS Evolved versions prior to 21.4R3-S8-EVO, 22.2R3-S4-EVO, 22.3R3-S4-EVO, 22.4R3-S3-EVO, 23.2R2-S1-EVO, and 23.4R1-S2-EVO.

Can CVE-2024-39534 be exploited remotely?

Yes, CVE-2024-39534 can be exploited by an unauthenticated network-adjacent attacker.

Vulnerability/
CVE-2024-39534

medium

5.4

CWE

697

11/10/2024

15/10/2024

CVE-2024-39534: Junos OS Evolved: Connections to the network and broadcast address accepted

Q: What type of vulnerability is CVE-2024-39534?

CVE-2024-39534 is classified as an Incorrect Comparison vulnerability in the local address verification API.

First published: Fri Oct 11 2024(Updated: )

An Incorrect Comparison vulnerability in the local address verification API of Juniper Networks Junos OS Evolved allows an unauthenticated network-adjacent attacker to create sessions or send traffic to the device using the network and broadcast address of the subnet assigned to an interface. This is unintended and unexpected behavior and can allow an attacker to bypass certain compensating controls, such as stateless firewall filters. This issue affects Junos OS Evolved: * All versions before 21.4R3-S8-EVO, * 22.2-EVO before 22.2R3-S4-EVO, * 22.3-EVO before 22.3R3-S4-EVO, * 22.4-EVO before 22.4R3-S3-EVO, * 23.2-EVO before 23.2R2-S1-EVO, * 23.4-EVO before 23.4R1-S2-EVO, 23.4R2-EVO.

Credit: sirt@juniper.net

Affected Software	Affected Version	How to fix
Juniper Networks Junos OS	<21.4R3-S8-EVO<22.2R3-S4-EVO<22.3R3-S4-EVO<22.4R3-S3-EVO<23.2R2-S1-EVO<23.4R1-S2-EVO

Remedy

The following software releases have been updated to resolve this specific issue: 21.4R3-S8-EVO, 22.2R3-S4-EVO, 22.3R3-S4-EVO*, 22.4R3-S3-EVO, 23.2R2-S1-EVO, 23.4R1-S2-EVO, 23.4R2-EVO, 24.2R1-EVO, and all subsequent releases. *Future release

Never miss a vulnerability like this again

Reference Links

https://supportportal.juniper.net/JSA88105

Frequently Asked Questions

What is the severity of CVE-2024-39534?
CVE-2024-39534 is categorized as a high severity vulnerability due to its potential for unauthorized access.
How do I fix CVE-2024-39534?
To fix CVE-2024-39534, users should upgrade to a fixed version of Junos OS Evolved that addresses this vulnerability.
Who is affected by CVE-2024-39534?
CVE-2024-39534 affects users of Juniper Networks Junos OS Evolved versions prior to 21.4R3-S8-EVO, 22.2R3-S4-EVO, 22.3R3-S4-EVO, 22.4R3-S3-EVO, 23.2R2-S1-EVO, and 23.4R1-S2-EVO.
What type of vulnerability is CVE-2024-39534?
CVE-2024-39534 is classified as an Incorrect Comparison vulnerability in the local address verification API.
Can CVE-2024-39534 be exploited remotely?
Yes, CVE-2024-39534 can be exploited by an unauthenticated network-adjacent attacker.

agent/remedy
agent/title
agent/references
agent/weakness
agent/type
agent/first-publish-date
agent/description
agent/severity
agent/author
agent/event
collector/nvd-api
source/NVD
agent/last-modified-date
collector/mitre-cve
source/MITRE
agent/source
agent/tags
agent/softwarecombine
agent/guess-ai
agent/software-canonical-lookup
agent/software-canonical-lookup-request
vendor/juniper networks
canonical/juniper networks junos os

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.