{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2024-30405","assignerOrgId":"8cbe9d5a-a066-4c94-8978-4b15efeae968","state":"PUBLISHED","assignerShortName":"juniper","dateReserved":"2024-03-26T23:06:19.981Z","datePublished":"2024-04-12T15:04:23.911Z","dateUpdated":"2024-08-12T17:24:28.664Z"},"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","platforms":["SRX 5000 Series with SPC2"],"product":"Junos OS","vendor":"Juniper Networks","versions":[{"lessThan":"21.2R3-S7","status":"affected","version":"0","versionType":"semver"},{"lessThan":"21.4R3-S6","status":"affected","version":"21.4","versionType":"semver"},{"lessThan":"22.1R3-S5","status":"affected","version":"22.1","versionType":"semver"},{"lessThan":"22.2R3-S3","status":"affected","version":"22.2","versionType":"semver"},{"lessThan":"22.3R3-S2","status":"affected","version":"22.3","versionType":"semver"},{"lessThan":"22.4R3","status":"affected","version":"22.4","versionType":"semver"},{"lessThan":"23.2R2","status":"affected","version":"23.2","versionType":"semver"}]}],"configurations":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>The following minimum configuration is required to be exposed to the issue:</p><p>&nbsp; [security alg]<br></p><p> </p>"}],"value":"The following minimum configuration is required to be exposed to the issue:\n\n  [security alg]"}],"datePublic":"2024-04-10T16:00:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000 Series devices using SPC2 line cards while ALGs are enabled allows an attacker sending specific crafted packets to cause a transit traffic Denial of Service (DoS).<br><br>Continued receipt and processing of these specific packets will sustain the Denial of Service condition.<br><br>This issue affects:<br>Juniper Networks Junos OS SRX 5000 Series with SPC2 with ALGs enabled.<br><ul><li>All versions earlier than 21.2R3-S7;</li><li>21.4 versions earlier than 21.4R3-S6;</li><li>22.1 versions earlier than 22.1R3-S5;</li><li>22.2 versions earlier than 22.2R3-S3;</li><li>22.3 versions earlier than 22.3R3-S2;</li><li>22.4 versions earlier than 22.4R3;</li><li>23.2 versions earlier than 23.2R2.&nbsp;</li></ul>"}],"value":"An Incorrect Calculation of Buffer Size vulnerability in Juniper Networks Junos OS SRX 5000 Series devices using SPC2 line cards while ALGs are enabled allows an attacker sending specific crafted packets to cause a transit traffic Denial of Service (DoS).\n\nContinued receipt and processing of these specific packets will sustain the Denial of Service condition.\n\nThis issue affects:\nJuniper Networks Junos OS SRX 5000 Series with SPC2 with ALGs enabled.\n  *  All versions earlier than 21.2R3-S7;\n  *  21.4 versions earlier than 21.4R3-S6;\n  *  22.1 versions earlier than 22.1R3-S5;\n  *  22.2 versions earlier than 22.2R3-S3;\n  *  22.3 versions earlier than 22.3R3-S2;\n  *  22.4 versions earlier than 22.4R3;\n  *  23.2 versions earlier than 23.2R2."}],"exploits":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>Juniper SIRT is not aware of any malicious exploitation of this vulnerability.</p>"}],"value":"Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"HIGH","baseScore":7.5,"baseSeverity":"HIGH","confidentialityImpact":"NONE","integrityImpact":"NONE","privilegesRequired":"NONE","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]},{"cvssV4_0":{"Automatable":"NOT_DEFINED","Recovery":"NOT_DEFINED","Safety":"NOT_DEFINED","attackComplexity":"LOW","attackRequirements":"NONE","attackVector":"NETWORK","baseScore":8.7,"baseSeverity":"HIGH","privilegesRequired":"NONE","providerUrgency":"NOT_DEFINED","subAvailabilityImpact":"LOW","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","userInteraction":"NONE","valueDensity":"NOT_DEFINED","vectorString":"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L","version":"4.0","vulnAvailabilityImpact":"HIGH","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnerabilityResponseEffort":"NOT_DEFINED"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-131","description":"CWE-131 Incorrect Calculation of Buffer Size","lang":"en","type":"CWE"}]}],"providerMetadata":{"orgId":"8cbe9d5a-a066-4c94-8978-4b15efeae968","shortName":"juniper","dateUpdated":"2024-05-16T20:37:47.854Z"},"references":[{"tags":["vendor-advisory"],"url":"https://supportportal.juniper.net/JSA79105"},{"tags":["technical-description"],"url":"https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>The following software releases have been updated to resolve this specific issue:&nbsp;21.2R3-S7, 21.4R3-S6, 22.1R3-S5, 22.2R3-S3, 22.3R3-S2, 22.4R3, 23.2R2, <span style=\"background-color: rgb(255, 255, 255);\">23.4R1, and all subsequent releases.</span></p>"}],"value":"The following software releases have been updated to resolve this specific issue: 21.2R3-S7, 21.4R3-S6, 22.1R3-S5, 22.2R3-S3, 22.3R3-S2, 22.4R3, 23.2R2, 23.4R1, and all subsequent releases."}],"source":{"advisory":"JSA79105","defect":["1750148"],"discovery":"USER"},"timeline":[{"lang":"en","time":"2024-04-10T16:00:00.000Z","value":"Initial Publication"}],"title":"Junos OS: SRX 5000 Series with SPC2: Processing of specific crafted packets when ALG is enabled causes a transit traffic Denial of Service","workarounds":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>There are no known workarounds for this issue other than reducing risk by disabling as many ALGs as possible until the device can be upgraded.</p>"}],"value":"There are no known workarounds for this issue other than reducing risk by disabling as many ALGs as possible until the device can be upgraded."}],"x_generator":{"engine":"Vulnogram 0.1.0-av217"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-02T01:32:07.230Z"},"title":"CVE Program Container","references":[{"tags":["vendor-advisory","x_transferred"],"url":"https://supportportal.juniper.net/JSA79105"},{"tags":["technical-description","x_transferred"],"url":"https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L"}]},{"affected":[{"vendor":"juniper","product":"junos","cpes":["cpe:2.3:o:juniper:junos:*:*:*:*:*:*:*:*"],"defaultStatus":"unaffected","versions":[{"version":"0","status":"affected","lessThan":"21.2r3-s7","versionType":"semver"},{"version":"21.4","status":"affected","lessThan":"21.4r3-s6","versionType":"semver"},{"version":"22.1","status":"affected","lessThan":"22.1r3-s5","versionType":"semver"},{"version":"22.2","status":"affected","lessThan":"22.2r3-s3","versionType":"semver"},{"version":"22.3","status":"affected","lessThan":"22.3r3-s2","versionType":"semver"},{"version":"22.4","status":"affected","lessThan":"22.4r3","versionType":"semver"},{"version":"23.2","status":"affected","lessThan":"23.2r2","versionType":"semver"}]}],"metrics":[{"other":{"type":"ssvc","content":{"timestamp":"2024-04-12T20:34:45.487020Z","id":"CVE-2024-30405","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"partial"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2024-08-12T17:24:28.664Z"}}]}}