{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-28T05:25:59.505","vulnerabilities":[{"cve":{"id":"CVE-2024-39559","sourceIdentifier":"sirt@juniper.net","published":"2024-07-10T23:15:12.863","lastModified":"2025-02-07T20:06:04.390","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"An Improper Check for Unusual or Exceptional Conditions vulnerability in packet processing of Juniper Networks Junos OS Evolved may allow a network-based unauthenticated attacker to crash the device (vmcore) by sending a specific TCP packet over an established TCP session with MD5 authentication enabled, destined to an accessible port on the device, resulting in a Denial of Service (DoS).  The receipt of this packet must occur within a specific timing window outside the attacker's control (i.e., race condition).\n\nContinued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.\n\nThis issue only affects dual RE systems with Nonstop Active Routing (NSR) enabled.\nExploitation can only occur over TCP sessions with MD5 authentication enabled (e.g., BGP with MD5 authentication).\n\nThis issue affects Junos OS Evolved: \n\n\n\n  *  All versions before 21.2R3-S8-EVO, \n  *  from 21.4-EVO before 21.4R3-S6-EVO, \n  *  from 22.1-EVO before 22.1R3-S4-EVO, \n  *  from 22.2-EVO before 22.2R3-S4-EVO, \n  *  from 22.3-EVO before 22.3R3-S3-EVO, \n  *  from 22.4-EVO before 22.4R2-S2-EVO, 22.4R3-EVO."},{"lang":"es","value":"Una vulnerabilidad de verificación inadecuada de condiciones inusuales o excepcionales en el procesamiento de paquetes de Juniper Networks Junos OS Evolved puede permitir que un atacante no autenticado basado en red bloquee el dispositivo (vmcore) enviando un paquete TCP específico a través de una sesión TCP establecida con la autenticación MD5 habilitada, destinada a un puerto accesible en el dispositivo, lo que resulta en una Denegación de Servicio (DoS). La recepción de este paquete debe ocurrir dentro de una ventana de tiempo específica fuera del control del atacante (es decir, condición de ejecución). La recepción y procesamiento continuo de este paquete creará una condición sostenida de Denegación de Servicio (DoS). Este problema solo afecta a los sistemas RE duales con el enrutamiento activo ininterrumpido (NSR) habilitado. La explotación sólo puede ocurrir a través de sesiones TCP con autenticación MD5 habilitada (por ejemplo, BGP con autenticación MD5). Este problema afecta a Junos OS Evolved: * Todas las versiones anteriores a 21.2R3-S8-EVO, * desde 21.4-EVO anteriores a 21.4R3-S6-EVO, * desde 22.1-EVO anteriores a 22.1R3-S4-EVO, * desde 22.2-EVO anteriores 22.2R3-S4-EVO, * de 22.3-EVO antes de 22.3R3-S3-EVO, * de 22.4-EVO antes de 22.4R2-S2-EVO, 22.4R3-EVO."}],"metrics":{"cvssMetricV40":[{"source":"sirt@juniper.net","type":"Secondary","cvssData":{"version":"4.0","vectorString":"CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:A/V:X/RE:X/U:X","baseScore":8.2,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","attackRequirements":"PRESENT","privilegesRequired":"NONE","userInteraction":"NONE","vulnConfidentialityImpact":"NONE","vulnIntegrityImpact":"NONE","vulnAvailabilityImpact":"HIGH","subConfidentialityImpact":"NONE","subIntegrityImpact":"NONE","subAvailabilityImpact":"LOW","exploitMaturity":"NOT_DEFINED","confidentialityRequirement":"NOT_DEFINED","integrityRequirement":"NOT_DEFINED","availabilityRequirement":"NOT_DEFINED","modifiedAttackVector":"NOT_DEFINED","modifiedAttackComplexity":"NOT_DEFINED","modifiedAttackRequirements":"NOT_DEFINED","modifiedPrivilegesRequired":"NOT_DEFINED","modifiedUserInteraction":"NOT_DEFINED","modifiedVulnConfidentialityImpact":"NOT_DEFINED","modifiedVulnIntegrityImpact":"NOT_DEFINED","modifiedVulnAvailabilityImpact":"NOT_DEFINED","modifiedSubConfidentialityImpact":"NOT_DEFINED","modifiedSubIntegrityImpact":"NOT_DEFINED","modifiedSubAvailabilityImpact":"NOT_DEFINED","Safety":"NOT_DEFINED","Automatable":"NOT_DEFINED","Recovery":"AUTOMATIC","valueDensity":"NOT_DEFINED","vulnerabilityResponseEffort":"NOT_DEFINED","providerUrgency":"NOT_DEFINED"}}],"cvssMetricV31":[{"source":"sirt@juniper.net","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H","baseScore":5.9,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"HIGH","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.2,"impactScore":3.6}]},"weaknesses":[{"source":"sirt@juniper.net","type":"Secondary","description":[{"lang":"en","value":"CWE-754"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-754"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:*:*:*:*:*:*:*:*","versionEndExcluding":"21.2","matchCriteriaId":"9C14B5A6-597A-4181-8C42-392A2E4605BF"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:-:*:*:*:*:*:*","matchCriteriaId":"620B0CDD-5566-472E-B96A-31D2C12E3120"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r1:*:*:*:*:*:*","matchCriteriaId":"3EA3DC63-B290-4D15-BEF9-21DEF36CA2EA"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r1-s1:*:*:*:*:*:*","matchCriteriaId":"7E1E57AF-979B-4022-8AD6-B3558E06B718"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r1-s2:*:*:*:*:*:*","matchCriteriaId":"144730FB-7622-4B3D-9C47-D1B7A7FB7EB0"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r2:*:*:*:*:*:*","matchCriteriaId":"7BA246F0-154E-4F44-A97B-690D22FA73DD"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r2-s1:*:*:*:*:*:*","matchCriteriaId":"25D6C07C-F96E-4523-BB54-7FEABFE1D1ED"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r2-s2:*:*:*:*:*:*","matchCriteriaId":"2B70C784-534B-4FAA-A5ED-3709656E2B97"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r3:*:*:*:*:*:*","matchCriteriaId":"60448FFB-568E-4280-9261-ADD65244F31A"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s1:*:*:*:*:*:*","matchCriteriaId":"2B770C52-7E3E-4B92-9138-85DEC56F3B22"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s2:*:*:*:*:*:*","matchCriteriaId":"E88AC378-461C-4EFA-A04B-5786FF21FE03"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s3:*:*:*:*:*:*","matchCriteriaId":"3B0AFB30-81DC-465C-9F63-D1B15EA4809A"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s4:*:*:*:*:*:*","matchCriteriaId":"2035F0AC-29E7-478A-A9D0-BAA3A88B3413"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s5:*:*:*:*:*:*","matchCriteriaId":"C34ABD4B-B045-4046-9641-66E3B2082A25"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s6:*:*:*:*:*:*","matchCriteriaId":"6D5DC04F-18DE-403B-BE93-2251F3332C1C"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.2:r3-s7:*:*:*:*:*:*","matchCriteriaId":"909FC378-EBFE-4BA9-8393-0C8301438020"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:-:*:*:*:*:*:*","matchCriteriaId":"2E907193-075E-45BC-9257-9607DB790D71"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r1:*:*:*:*:*:*","matchCriteriaId":"8B73A41D-3FF5-4E53-83FF-74DF58E0D6C3"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s1:*:*:*:*:*:*","matchCriteriaId":"CEDF46A8-FC3A-4779-B695-2CA11D045AEB"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s2:*:*:*:*:*:*","matchCriteriaId":"39809219-9F87-4583-9DAD-9415DD320B36"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r2:*:*:*:*:*:*","matchCriteriaId":"DB299492-A919-4EBA-A62A-B3CF02FC0A95"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s1:*:*:*:*:*:*","matchCriteriaId":"74ED0939-D5F8-4334-9838-40F29DE3597F"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s2:*:*:*:*:*:*","matchCriteriaId":"C6937069-8C19-4B01-8415-ED7E9EAE2CE2"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r3:*:*:*:*:*:*","matchCriteriaId":"97DB6DD5-F5DD-4AE1-AF2F-8DB9E18FF882"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s1:*:*:*:*:*:*","matchCriteriaId":"21DF05B8-EF7E-422F-8831-06904160714C"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s2:*:*:*:*:*:*","matchCriteriaId":"492FCE45-68A1-4378-85D4-C4034FE0D836"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s3:*:*:*:*:*:*","matchCriteriaId":"522114CC-1505-4205-B4B8-797DE1BD833B"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s4:*:*:*:*:*:*","matchCriteriaId":"C9D664AB-0FA7-49C7-B6E1-69C77652FBEF"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s5:*:*:*:*:*:*","matchCriteriaId":"9DB01252-2F11-41DB-9023-C74FD723334E"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:-:*:*:*:*:*:*","matchCriteriaId":"C16434C0-21A7-4CE5-92E1-7D60A35EF5D1"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:r1:*:*:*:*:*:*","matchCriteriaId":"750FE748-82E7-4419-A061-2DEA26E35309"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:r1-s1:*:*:*:*:*:*","matchCriteriaId":"236E23E5-8B04-4081-9D97-7300DF284000"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:r1-s2:*:*:*:*:*:*","matchCriteriaId":"5FC96EA7-90A7-4838-B95D-60DBC88C7BC7"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:r2:*:*:*:*:*:*","matchCriteriaId":"97541867-C52F-40BB-9AAE-7E87ED23D789"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:r2-s1:*:*:*:*:*:*","matchCriteriaId":"85CF6664-E35A-4E9B-95C0-CDC91F7F331A"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:r3:*:*:*:*:*:*","matchCriteriaId":"E048A05D-882F-4B1C-BA32-3BBA3FEA31A3"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:r3-s1:*:*:*:*:*:*","matchCriteriaId":"47E8D51D-1424-4B07-B036-E3E195F21AC2"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:r3-s2:*:*:*:*:*:*","matchCriteriaId":"6F3C82ED-5728-406F-ACF6-D7411B0AB6C0"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.1:r3-s3:*:*:*:*:*:*","matchCriteriaId":"1475A58F-1515-4492-B5A3-BE40C30E5B14"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:-:*:*:*:*:*:*","matchCriteriaId":"A3CA3365-F9AF-40DF-8700-30AD4BC58E27"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r1:*:*:*:*:*:*","matchCriteriaId":"D77A072D-350A-42F2-8324-7D3AC1711BF9"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r1-s1:*:*:*:*:*:*","matchCriteriaId":"83AE395C-A651-4568-88E3-3600544BF799"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r1-s2:*:*:*:*:*:*","matchCriteriaId":"C7FEFD0A-A969-4F53-8668-1231FD675D6F"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r2:*:*:*:*:*:*","matchCriteriaId":"B3BE1FD4-DAD9-4357-A2E9-20E5826B0D5C"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s1:*:*:*:*:*:*","matchCriteriaId":"81CC3480-4B65-4588-8D46-FA80A8F6D143"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s2:*:*:*:*:*:*","matchCriteriaId":"F7E76F5F-DB37-4B7F-9247-3CEB4EBD7696"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r3:*:*:*:*:*:*","matchCriteriaId":"C63DBEE5-B0C2-498F-A672-B6596C89B0A2"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s1:*:*:*:*:*:*","matchCriteriaId":"9370C46D-3AA1-4562-B67F-DF6EA10F209B"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s2:*:*:*:*:*:*","matchCriteriaId":"1FD8C240-A7FE-4FD5-ADCC-289C1BC461BF"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s3:*:*:*:*:*:*","matchCriteriaId":"2FB9F20B-7683-4B0D-8D2B-5569414EBC29"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:-:*:*:*:*:*:*","matchCriteriaId":"BE2EF84D-55A9-41DC-A324-69E1DC426D0B"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:r1:*:*:*:*:*:*","matchCriteriaId":"433631CA-3AC4-4D66-9B46-AEA4209347F1"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s1:*:*:*:*:*:*","matchCriteriaId":"6E4CD8AD-277A-4FC5-A102-3E151060C216"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s2:*:*:*:*:*:*","matchCriteriaId":"4BC09BAC-83E7-48CE-B571-ED49277B2987"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:r2:*:*:*:*:*:*","matchCriteriaId":"FA4481D2-F693-48A5-8DBC-E86430987A25"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:r2-s1:*:*:*:*:*:*","matchCriteriaId":"136CA584-2475-4A14-9771-F367180201D4"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:r2-s2:*:*:*:*:*:*","matchCriteriaId":"4546776C-A657-42E3-9A36-47F9F59A88AD"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:r3:*:*:*:*:*:*","matchCriteriaId":"156DD8ED-CE6E-48C0-9E67-16B04767D62E"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:r3-s1:*:*:*:*:*:*","matchCriteriaId":"10F9C2B1-BD81-4EDC-ADF5-4B0F39001C7A"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.3:r3-s2:*:*:*:*:*:*","matchCriteriaId":"61F649B0-0121-4760-9432-5F57214EFC2B"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.4:-:*:*:*:*:*:*","matchCriteriaId":"0A33C425-921F-4795-B834-608C8F1597E0"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.4:r1:*:*:*:*:*:*","matchCriteriaId":"93887799-F62C-4A4A-BCF5-004D0B4D4154"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.4:r1-s1:*:*:*:*:*:*","matchCriteriaId":"62C473D2-2612-4480-82D8-8A24D0687BBD"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.4:r1-s2:*:*:*:*:*:*","matchCriteriaId":"7FB4C5CA-A709-4B13-A9E0-372098A72AD3"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.4:r2:*:*:*:*:*:*","matchCriteriaId":"04CE952D-E3C1-4B34-9E65-EC52BFE887AB"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos_os_evolved:22.4:r2-s1:*:*:*:*:*:*","matchCriteriaId":"8AE9D1A7-4721-4E1D-B965-FDC38126B1DD"}]}]}],"references":[{"url":"https://supportportal.juniper.net/JSA83019","source":"sirt@juniper.net","tags":["Vendor Advisory"]},{"url":"https://supportportal.juniper.net/JSA83019","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}