CVE-2024-30391

Published Apr 12, 2024

Last updated a month ago

CVSS medium 6.3

Overview

Description: A Missing Authentication for Critical Function vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on MX Series with SPC3, and SRX Series allows an unauthenticated network-based attacker to cause limited impact to the integrity or availability of the device. If a device is configured with IPsec authentication algorithm hmac-sha-384 or hmac-sha-512, tunnels are established normally but for traffic traversing the tunnel no authentication information is sent with the encrypted data on egress, and no authentication information is expected on ingress. So if the peer is an unaffected device transit traffic is going to fail in both directions. If the peer is an also affected device transit traffic works, but without authentication, and configuration and CLI operational commands indicate authentication is performed. This issue affects Junos OS: * All versions before 20.4R3-S7, * 21.1 versions before 21.1R3, * 21.2 versions before 21.2R2-S1, 21.2R3, * 21.3 versions before 21.3R1-S2, 21.3R2.
Source: sirt@juniper.net
NVD status: Analyzed

Risk scores

CVSS 4.0

Type: Secondary
Base score: 6.3
Impact score: -
Exploitability score: -
Vector string: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Severity: MEDIUM

CVSS 3.1

Type: Secondary
Base score: 4.8
Impact score: 2.5
Exploitability score: 2.2
Vector string: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L
Severity: MEDIUM

Weaknesses

sirt@juniper.net: CWE-306

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E3A96966-5060-4139-A124-D4E2C879FD6C",
            "versionEndExcluding": "20.4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D361B23-A3C2-444B-BEB8-E231DA950567"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "20DDC6B7-BFC4-4F0B-8E68-442C23765BF2"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "037BA01C-3F5C-4503-A633-71765E9EF774"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C54B047C-4B38-40C0-9855-067DCF7E48BD"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "38984199-E332-4A9C-A4C0-78083D052E15"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AA6526FB-2941-4D18-9B2E-472AD5A62A53"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "09876787-A40A-4340-9C12-8628C325353B"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r3-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "41615104-C17E-44DA-AB0D-6E2053BD4EF4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r3-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1981DE38-36B5-469D-917E-92717EE3ED53"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r3-s3:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AFA68ACD-AAE5-4577-B734-23AAF77BC85A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r3-s4:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "65948ABC-22BB-46D5-8545-0806EDB4B86E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r3-s5:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "283E41CB-9A90-4521-96DC-F31AA592CFD8"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:20.4:r3-s6:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "14EEA504-CBC5-4F6F-889A-D505EC4BB5B1"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.1:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6FDB5B7D-FB37-47E3-8678-B9ED578CCA5F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.1:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "625BA7E6-D2AD-4A48-9B94-24328BE5B06A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.1:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F462F4E3-762C-429F-8D25-5521100DD37C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.1:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C0BC9DAC-D6B5-4C5E-8C73-6E550D9A30F5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.1:r2-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "689FE1AE-7A85-4FB6-AB02-E732F23581B6"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.1:r2-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "79E56DAC-75AD-4C81-9835-634B40C15DA6"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.2:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "216E7DDE-453D-481F-92E2-9F8466CDDA3F"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.2:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A52AF794-B36B-43A6-82E9-628658624B0A"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.2:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3998DC76-F72F-4452-9150-652140B113EB"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.2:r1-s2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "36ED4552-2420-45F9-B6E4-6DA2B2B12870"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.2:r2:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C28A14E7-7EA0-4757-9764-E39A27CFDFA5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.3:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2E7D597D-F6B6-44C3-9EBC-4FA0686ACB5C"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.3:r1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC78A4CB-D617-43FC-BB51-287D2D0C44ED"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:21.3:r1-s1:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "30FF67F8-1E3C-47A8-8859-709B3614BA6E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:csrx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "11D4A86D-BDB4-4A01-96FE-7E023C58074B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx240:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F4A26704-A6A4-4C4F-9E12-A0A0259491EF"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx480:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "104858BD-D31D-40E0-8524-2EC311F10EAC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:mx960:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B5E08E1E-0FE4-4294-9497-BBFFECA2A220"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "561C1113-3D59-4DD9-ADA7-3C9ECC4632EC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "78C6D8A0-92D3-4FD3-BCC1-CC7C87B76317"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "927EAB8B-EC3B-4B12-85B9-5517EBA49A30"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2CEBF85C-736A-4E7D-956A-3E8210D4F70B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx1600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "4AE06B18-BFB5-4029-A05D-386CFBFBF683"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CD647C15-A686-4C8F-A766-BC29404C0FED"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "45AB1622-1AED-4CD7-98F1-67779CDFC321"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx2300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "48A1DCCD-208C-46D9-8E14-89592B49AB9A"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "89276D88-3B8D-4168-A2CD-0920297485F2"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx240h2:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "E020556B-693F-4963-BA43-3164AB50FA49"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx240m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "AB0D31FF-0812-42B8-B25E-03C35EC1B021"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB5AB24B-2B43-43DD-AE10-F758B4B19F2A"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "80F9DC32-5ADF-4430-B1A6-357D0B29DB78"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8B82D4C4-7A65-409A-926F-33C054DCBFBA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "746C3882-2A5B-4215-B259-EB1FD60C513D"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CE535749-F4CE-4FFA-B23D-BF09C92481E5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DDE64EC0-7E42-43AF-A8FA-1A233BD3E3BC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx380:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2305DA9D-E6BA-48F4-80CF-9E2DE7661B2F"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "06A03463-6B1D-4DBA-9E89-CAD5E899B98B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3AA8999C-8AE4-416F-BA2A-B1A21F33B4D7"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CCC5F6F5-4347-49D3-909A-27A3A96D36C9"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "826F893F-7B06-43B5-8653-A8D9794C052E"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "56BA6B86-D3F4-4496-AE46-AC513C6560FA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4700:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "462CFD52-D3E2-4F7A-98AC-C589D2420556"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5000:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "5ABA347C-3EF3-4F75-B4D1-54590A57C2BC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2FDDC897-747F-44DD-9599-7266F9B5B7B1"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "62FC145A-D477-4C86-89E7-F70F52773801"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx550_hm:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "06685D0E-A075-49A5-9EF4-34F0F795C8C6"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx550m:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "52F0B735-8C49-4B08-950A-296C9CDE43CA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "68CA098D-CBE4-4E62-9EC0-43E1B6098710"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "66F474D4-79B6-4525-983C-9A9011BD958B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8AA424D4-4DBF-4E8C-96B8-E37741B5403E"
          },
          {
            "criteria": "cpe:2.3:h:juniper:vsrx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8B10DFCE-5331-4D79-8D9F-EF84743493D3"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 4.0

CVSS 3.1

Weaknesses

Social media

Configurations

References