CVE-2024-39545

HIGH EPSS 38.5%

Published Jul 11, 20241y ago · Modified Jun 17, 20261w ago

8.7 CVSS 4.0

High

Published Jul 11, 2024 1y ago

Last Modified Jun 17, 2026 1w ago

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in the the IKE daemon (iked) of Juniper Networks Junos OS on SRX Series, MX Series with SPC3 and NFX350 allows allows an unauthenticated, network-based attacker sending specific mismatching parameters as part of the IPsec negotiation to trigger an iked crash leading to Denial of Service (DoS). This issue is applicable to all platforms that run iked. This issue affects Junos OS on SRX Series, MX Series with SPC3 and NFX350: * All versions before 21.2R3-S8, * from 21.4 before 21.4R3-S7, * from 22.1 before 22.1R3-S2, * from 22.2 before 22.2R3-S1, * from 22.3 before 22.3R2-S1, 22.3R3, * from 22.4 before 22.4R1-S2, 22.4R2, 22.4R3.

CVSS Details

Base Score

8.7

Exploitability

—

Impact

—

Vector string

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope X

Threat Intelligence

EPSS Exploit Probability

38.5% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-754

Affected Products 87

Vendor	Product	Version	Range
juniper	junos	*	<21.2
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	22.1	any
juniper	junos	22.1	any
juniper	junos	22.1	any
juniper	junos	22.1	any
juniper	junos	22.1	any
juniper	junos	22.1	any
juniper	junos	22.1	any
juniper	junos	22.1	any
juniper	junos	22.1	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.3	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	mx-spc3	*	any
juniper	mx10004	*	any
juniper	mx10008	*	any
juniper	mx2008	*	any
juniper	mx2010	*	any
juniper	mx2020	*	any
juniper	mx204	*	any
juniper	mx240	*	any
juniper	mx304	*	any
juniper	mx480	*	any
juniper	mx960	*	any
juniper	nfx350	*	any
juniper	srx1500	*	any
juniper	srx1600	*	any
juniper	srx2300	*	any
juniper	srx300	*	any
juniper	srx320	*	any
juniper	srx340	*	any
juniper	srx345	*	any
juniper	srx380	*	any
juniper	srx4100	*	any
juniper	srx4120	*	any
juniper	srx4200	*	any
juniper	srx4300	*	any
juniper	srx4600	*	any
juniper	srx4700	*	any
juniper	srx5400	*	any
juniper	srx5600	*	any
juniper	srx5800	*	any

References 1

supportportal.juniper.net https://supportportal.juniper.net/JSA83007

Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.