CVE-2024-39535

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (DoS). When a device has a Layer 3 or an IRB interface configured in a VPLS instance and specific traffic is received, the evo-pfemand processes crashes which causes a service outage for the respective FPC until the system is recovered manually. This issue only affects Junos OS Evolved 22.4R2-S1 and 22.4R2-S2 releases and is fixed in 22.4R3. No other releases are affected.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://supportportal.juniper.net/JSA82995	Vendor Advisory
https://supportportal.juniper.net/JSA82995	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s1::::::
	cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s2::::::

OR	cpe:2.3:h:juniper:acx7020:-:::::::*
	cpe:2.3:h:juniper:acx7024:-:::::::*
	cpe:2.3:h:juniper:acx7024x:-:::::::*
	cpe:2.3:h:juniper:acx7100:-:::::::*
	cpe:2.3:h:juniper:acx7300:-:::::::*
	cpe:2.3:h:juniper:acx7509:-:::::::*

History

22 Jan 2026, 21:13

Type	Values Removed	Values Added
References	~~() https://supportportal.juniper.net/JSA82995 -~~	() https://supportportal.juniper.net/JSA82995 - Vendor Advisory
First Time		Juniper acx7300 Juniper Juniper junos Os Evolved Juniper acx7024 Juniper acx7100 Juniper acx7509 Juniper acx7020 Juniper acx7024x
CPE		cpe:2.3:h:juniper:acx7020:-:::::::* cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s1:::::: cpe:2.3:h:juniper:acx7300:-:::::::* cpe:2.3:h:juniper:acx7509:-:::::::* cpe:2.3:h:juniper:acx7024:-:::::::* cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s2:::::: cpe:2.3:h:juniper:acx7024x:-:::::::* cpe:2.3:h:juniper:acx7100:-:::::::*

21 Nov 2024, 09:27

Type	Values Removed	Values Added
References	~~() https://supportportal.juniper.net/JSA82995 -~~	() https://supportportal.juniper.net/JSA82995 -
Summary		(es) Una verificación inadecuada de la vulnerabilidad de condiciones inusuales o excepcionales en Packet Forwarding Engine (PFE) de Juniper Networks Junos OS Evolved en la serie ACX 7000 permite que un atacante adyacente no autenticado provoque una denegación de servicio (DoS). Cuando un dispositivo tiene una interfaz de Capa 3 o IRB configurada en una instancia de VPLS y se recibe tráfico específico, los procesos evo-pfemand fallan, lo que provoca una interrupción del servicio para el FPC respectivo hasta que el sistema se recupere manualmente. Este problema solo afecta a las versiones Junos OS Evolved 22.4R2-S1 y 22.4R2-S2 y se solucionó en 22.4R3. Ninguna otra versión se ve afectada.

11 Jul 2024, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2024-07-11 17:15

Updated : 2026-01-22 21:13

NVD link : CVE-2024-39535

Mitre link : CVE-2024-39535

CVE.ORG link : CVE-2024-39535

JSON object : View

Products Affected

juniper

acx7509
acx7024
acx7100
acx7020
junos_os_evolved
acx7024x
acx7300

CWE

CWE-754

Improper Check for Unusual or Exceptional Conditions

6.5 /10