CVE-2024-30389

Published Apr 12, 2024

Last updated 17 days ago

CVSS medium 6.9

Overview

Description: An Incorrect Behavior Order vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on EX4300 Series allows an unauthenticated, network-based attacker to cause an integrity impact to networks downstream of the vulnerable device. When an output firewall filter is applied to an interface it doesn't recognize matching packets but permits any traffic. This issue affects Junos OS 21.4 releases from 21.4R1 earlier than 21.4R3-S6. This issue does not affect Junos OS releases earlier than 21.4R1.
Source: sirt@juniper.net
NVD status: Analyzed

Risk scores

CVSS 4.0

Type: Secondary
Base score: 6.9
Impact score: -
Exploitability score: -
Vector string: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity: MEDIUM

CVSS 3.1

Type: Secondary
Base score: 5.8
Impact score: 1.4
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Severity: MEDIUM

Weaknesses

sirt@juniper.net: CWE-696
nvd@nist.gov: NVD-CWE-Other

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4310D2D9-A8A6-48F8-9384-0A0692A1E1C3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9962B01C-C57C-4359-9532-676AB81CE8B0"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "62178549-B679-4902-BFDB-2993803B7FCE"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9AD697DF-9738-4276-94ED-7B9380CD09F5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09FF5818-0803-4646-A386-D7C645EE58A3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2229FA59-EB24-49A2-85CE-F529A8DE6BA7"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0CB280D8-C5D8-4B51-A879-496ACCDE4538"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5F3F54F1-75B3-400D-A735-2C27C8CEBE79"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "476A49E7-37E9-40F9-BF2D-9BBFFAA1DFFC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A5B196A-2AF1-4AE5-9148-A75A572807BC"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3B457616-2D91-4913-9A7D-038BBF8F1F66"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.4:r3-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C470FB4E-A927-4AF3-ACB0-AD1E264218B7"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:ex4300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E594D6DC-87F6-40D2-8268-ED6021462168"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-24p:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "7BEA4BC3-093F-4DE6-BED1-2C7D2FC2C8A5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-24p-s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "592377CC-4044-4FDD-A3DF-CBF25754EE4D"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-24t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D12E8275-EF6B-44F9-A7D8-A769CDB5EED5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-24t-s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "D3E63215-246E-49F3-A537-8A90D512DAB0"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-32f:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AD1A5E69-928A-41A0-8B9B-91F307D99854"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-32f-dc:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2B71953D-016D-4E72-B598-55667A507681"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-32f-s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CABBC37B-EB93-424D-A1E7-4686039C0955"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-48mp:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "24526B69-E3E3-4249-80A4-A886BED5C07E"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-48mp-s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B2209605-65B6-44B3-9700-9EC543BF2408"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-48p:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "C3C348CF-65C1-4A53-8F4F-99B5A4113679"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-48p-s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "60CB5F91-DC40-4D09-BB93-4539B8581877"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-48t:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "ADE8EB69-95DD-44E9-80A6-F2B5E34BBD5B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-48t-afi:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EEEDB14F-E74A-4C48-A969-1D22D7F7C7C8"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-48t-dc:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CBE3866E-109E-479F-9FFE-3F6E81C0DE7C"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-48t-dc-afi:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8A17D793-5F01-4818-956D-D6BC5A6C4CEE"
          },
          {
            "criteria": "cpe:2.3:h:juniper:ex4300-48t-s:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "EF4C3E8E-C8B4-42A5-8DB6-7E8114FCC030"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 4.0

CVSS 3.1

Weaknesses

Social media

Configurations

References