Vulnerabilities
Misconfiguration
Runtime Security
Compliance
CVE Vulnerabilities

CVE-2024-30388

Improper Isolation or Compartmentalization

Published: Apr 12, 2024 | Modified: May 16, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2024-30388
CWEhttps://cwe.mitre.org/data/definitions/653.html

An Improper Isolation or Compartmentalization vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on QFX5000 Series and EX Series allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS).

If a specific malformed LACP packet is received by a QFX5000 Series, or an EX4400, EX4100 or EX4650 Series device, an LACP flap will occur resulting in traffic loss. This issue affects Junos OS on QFX5000 Series, and on EX4400, EX4100 or EX4650 Series:

  • 20.4 versions from

20.4R3-S4

before 20.4R3-S8,

  • 21.2 versions from

21.2R3-S2

before 21.2R3-S6,

  • 21.4 versions from

21.4R2

before 21.4R3-S4,

  • 22.1 versions from

22.1R2

before 22.1R3-S3,

  • 22.2 versions before 22.2R3-S1,
  • 22.3 versions before 22.3R2-S2, 22.3R3,
  • 22.4 versions before 22.4R2-S1, 22.4R3.

Weakness

The product does not properly compartmentalize or isolate functionality, processes, or resources that require different privilege levels, rights, or permissions.

Potential Mitigations

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2024 Aqua Security Software Ltd.   Privacy Policy | Terms of Use