mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-08-04 08:44:25 +00:00
185 lines
8.1 KiB
JSON
185 lines
8.1 KiB
JSON
{
|
|
"data_version": "4.0",
|
|
"data_type": "CVE",
|
|
"data_format": "MITRE",
|
|
"CVE_data_meta": {
|
|
"ID": "CVE-2024-21591",
|
|
"ASSIGNER": "sirt@juniper.net",
|
|
"STATE": "PUBLIC"
|
|
},
|
|
"description": {
|
|
"description_data": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "\nAn Out-of-bounds Write vulnerability in J-Web of Juniper Networks Junos OS on SRX Series and EX Series allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS), or Remote Code Execution (RCE) and obtain root privileges on the device.\n\nThis issue is caused by use of an insecure function allowing an attacker to overwrite arbitrary memory.\n\nThis issue affects Juniper Networks Junos OS SRX Series and EX Series:\n\n\n\n * Junos OS versions earlier than 20.4R3-S9;\n * Junos OS 21.2 versions earlier than 21.2R3-S7;\n * Junos OS 21.3 versions earlier than 21.3R3-S5;\n * Junos OS 21.4 versions earlier than 21.4R3-S5;\n * Junos OS 22.1 versions earlier than 22.1R3-S4;\n * Junos OS 22.2 versions earlier than 22.2R3-S3;\n * Junos OS 22.3 versions earlier than 22.3R3-S2;\n * Junos OS 22.4 versions earlier than 22.4R2-S2, 22.4R3.\n\n\n\n\n\n\n"
|
|
}
|
|
]
|
|
},
|
|
"problemtype": {
|
|
"problemtype_data": [
|
|
{
|
|
"description": [
|
|
{
|
|
"lang": "eng",
|
|
"value": "CWE-787 Out-of-bounds Write",
|
|
"cweId": "CWE-787"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"affects": {
|
|
"vendor": {
|
|
"vendor_data": [
|
|
{
|
|
"vendor_name": "Juniper Networks",
|
|
"product": {
|
|
"product_data": [
|
|
{
|
|
"product_name": "Junos OS",
|
|
"version": {
|
|
"version_data": [
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "0",
|
|
"version_value": "20.4R3-S9"
|
|
},
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "21.2",
|
|
"version_value": "21.2R3-S7"
|
|
},
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "21.3",
|
|
"version_value": "21.3R3-S5"
|
|
},
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "21.4",
|
|
"version_value": "21.4R3-S5"
|
|
},
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "22.1",
|
|
"version_value": "22.1R3-S4"
|
|
},
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "22.2",
|
|
"version_value": "22.2R3-S3"
|
|
},
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "22.3",
|
|
"version_value": "22.3R3-S2"
|
|
},
|
|
{
|
|
"version_affected": "<",
|
|
"version_name": "22.4",
|
|
"version_value": "22.4R2-S2, 22.4R3"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"references": {
|
|
"reference_data": [
|
|
{
|
|
"url": "https://supportportal.juniper.net/JSA75729",
|
|
"refsource": "MISC",
|
|
"name": "https://supportportal.juniper.net/JSA75729"
|
|
},
|
|
{
|
|
"url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
|
|
"refsource": "MISC",
|
|
"name": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N"
|
|
}
|
|
]
|
|
},
|
|
"generator": {
|
|
"engine": "Vulnogram 0.1.0-av217"
|
|
},
|
|
"source": {
|
|
"advisory": "JSA75729",
|
|
"defect": [
|
|
"1747984"
|
|
],
|
|
"discovery": "EXTERNAL"
|
|
},
|
|
"configuration": [
|
|
{
|
|
"lang": "en",
|
|
"supportingMedia": [
|
|
{
|
|
"base64": false,
|
|
"type": "text/html",
|
|
"value": "<p>The following minimal configuration must be present on the device:</p><tt>[system services web-management http]</tt><p>or</p><tt>[system services web-management https]</tt>"
|
|
}
|
|
],
|
|
"value": "The following minimal configuration must be present on the device:\n\n[system services web-management http]or\n\n[system services web-management https]"
|
|
}
|
|
],
|
|
"work_around": [
|
|
{
|
|
"lang": "en",
|
|
"supportingMedia": [
|
|
{
|
|
"base64": false,
|
|
"type": "text/html",
|
|
"value": "<p>Disable J-Web, or limit access to only trusted hosts.</p>"
|
|
}
|
|
],
|
|
"value": "Disable J-Web, or limit access to only trusted hosts.\n\n"
|
|
}
|
|
],
|
|
"exploit": [
|
|
{
|
|
"lang": "en",
|
|
"supportingMedia": [
|
|
{
|
|
"base64": false,
|
|
"type": "text/html",
|
|
"value": "<p>Juniper SIRT is not aware of any malicious exploitation of this vulnerability.</p>"
|
|
}
|
|
],
|
|
"value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability.\n\n"
|
|
}
|
|
],
|
|
"solution": [
|
|
{
|
|
"lang": "en",
|
|
"supportingMedia": [
|
|
{
|
|
"base64": false,
|
|
"type": "text/html",
|
|
"value": "<p>The following software releases have been updated to resolve this specific issue: </p><p>Junos OS: 20.4R3-S9, 21.2R3-S7, 21.3R3-S5, 21.4R3-S5, 22.1R3-S4, 22.2R3-S3, 22.3R3-S2, 22.4R2-S2, 22.4R3, 23.2R1-S1, 23.2R2, 23.4R1, and all subsequent releases.</p>"
|
|
}
|
|
],
|
|
"value": "The following software releases have been updated to resolve this specific issue: \n\nJunos OS: 20.4R3-S9, 21.2R3-S7, 21.3R3-S5, 21.4R3-S5, 22.1R3-S4, 22.2R3-S3, 22.3R3-S2, 22.4R2-S2, 22.4R3, 23.2R1-S1, 23.2R2, 23.4R1, and all subsequent releases.\n\n"
|
|
}
|
|
],
|
|
"impact": {
|
|
"cvss": [
|
|
{
|
|
"attackComplexity": "LOW",
|
|
"attackVector": "NETWORK",
|
|
"availabilityImpact": "HIGH",
|
|
"baseScore": 9.8,
|
|
"baseSeverity": "CRITICAL",
|
|
"confidentialityImpact": "HIGH",
|
|
"integrityImpact": "HIGH",
|
|
"privilegesRequired": "NONE",
|
|
"scope": "UNCHANGED",
|
|
"userInteraction": "NONE",
|
|
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
|
|
"version": "3.1"
|
|
}
|
|
]
|
|
}
|
|
} |