Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2024-30390

Опубликовано: 12 апр. 2024
Источник: nvd
CVSS3: 5.3
EPSS Низкий

Описание

An Improper Restriction of Excessive Authentication Attempts vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited Denial of Service (DoS) to the management plane.

When an incoming connection was blocked because it exceeded the connections-per-second rate-limit, the system doesn't consider existing connections anymore for subsequent connection attempts so that the connection limit can be exceeded. This issue affects Junos OS Evolved:

  • All versions before 21.4R3-S4-EVO,
  • 22.1-EVO versions before 22.1R3-S3-EVO,
  • 22.2-EVO versions before 22.2R3-S2-EVO, 
  • 22.3-EVO versions before 22.3R2-S1-EVO, 22.3R3-EVO.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:juniper:junos_os_evolved:*:*:*:*:*:*:*:*
Версия до 21.4 (исключая)
cpe:2.3:o:juniper:junos_os_evolved:21.4:-:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r1-s2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r2-s2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:21.4:r3-s3:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.1:-:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.1:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.1:r1-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.1:r1-s2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.1:r2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.1:r2-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.1:r3:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.1:r3-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.1:r3-s2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.2:-:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.2:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.2:r1-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.2:r1-s2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.2:r2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.2:r2-s2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.2:r3:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.2:r3-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.3:-:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.3:r1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s1:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.3:r1-s2:*:*:*:*:*:*
cpe:2.3:o:juniper:junos_os_evolved:22.3:r2:*:*:*:*:*:*

EPSS

Процентиль: 23%
0.00076
Низкий

5.3 Medium

CVSS3

Дефекты

CWE-307
CWE-307

Связанные уязвимости

github логотип

GHSA-6w72-x59c-h2c9

CVSS3: 5.3
github
почти 2 года назад

An Improper Restriction of Excessive Authentication Attempts vulnerability in Juniper Networks Junos OS Evolved allows an unauthenticated, network-based attacker to cause a limited Denial of Service (DoS) to the management plane. When an incoming connection was blocked because it exceeded the connections-per-second rate-limit, the system doesn't consider existing connections anymore for subsequent connection attempts so that the connection limit can be exceeded. This issue affects Junos OS Evolved: All versions before 21.4R3-S4-EVO, 22.1-EVO versions before 22.1R3-S3-EVO, 22.2-EVO versions before 22.2R3-S2-EVO,  22.3-EVO versions before 22.3R2-S1-EVO, 22.3R3-EVO.

fstec логотип

BDU:2024-05312

CVSS3: 5.3
fstec
почти 2 года назад

Уязвимость операционной системы Juniper Networks Junos OS Evolved, связанная с недостаточным ограничением попыток аутентификации, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 23%
0.00076
Низкий

5.3 Medium

CVSS3

Дефекты

CWE-307
CWE-307