// For flags

CVE-2024-47493

Junos OS: MX Series: Trio-based FPCs: Continuous physical Interface flaps causes local FPC to crash

Severity Score

7.1
*CVSS v4

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

Track
*SSVC
Descriptions

A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of the Juniper Networks Junos OS on the SRX5K, SRX4600 and MX Series platforms with Trio-based FPCs allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS).

In case of channelized Modular Interface Cards (MICs), every physical interface flap operation will leak heap memory. Over a period of time, continuous physical interface flap operations causes local FPC to eventually run out of memory and crash.  

Below CLI command can be used to check the memory usage over a period of time:

  user@host> show chassis fpc























                Temp CPU Utilization (%)   CPU Utilization (%) Memory  
Utilization (%)
  Slot State     (C)  Total  Interrupt     1min   5min  
15min DRAM (MB) Heap     Buffer

  0
Online       43     41        
2                           2048       49         14

  1
Online       43     41        
2                          
2048       49         14

  2
Online       43     41        
2                          
2048       49         14









This issue affects Junos OS on SRX5K, SRX4600 and MX Series: 




* All versions before 21.2R3-S7, 
* from 21.4 before 21.4R3-S6, 
* from 22.1 before 22.1R3-S5, 
* from 22.2 before 22.2R3-S3, 
* from 22.3 before 22.3R3-S2, 
* from 22.4 before 22.4R3, 
* from 23.2 before 23.2R2, 
* from 23.4 before 23.4R2.

A Missing Release of Memory after Effective Lifetime vulnerability in the Packet Forwarding Engine (PFE) of the Juniper Networks Junos OS on the MX Series platforms with Trio-based FPCs allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS).

In case of channelized Modular Interface Cards (MICs), every physical interface flap operation will leak heap memory. Over a period of time, continuous physical interface flap operations causes local FPC to eventually run out of memory and crash.  

Below CLI command can be used to check the memory usage over a period of time:

  user@host> show chassis fpc























                Temp CPU Utilization (%)   CPU Utilization (%) Memory  
Utilization (%)
  Slot State     (C)  Total  Interrupt     1min   5min  
15min DRAM (MB) Heap     Buffer

  0
Online       43     41        
2                           2048       49         14

  1
Online       43     41        
2                          
2048       49         14

  2
Online       43     41        
2                          
2048       49         14









This issue affects Junos OS on MX Series: 




* All versions before 21.2R3-S7, 
* from 21.4 before 21.4R3-S6, 
* from 22.1 before 22.1R3-S5, 
* from 22.2 before 22.2R3-S3, 
* from 22.3 before 22.3R3-S2, 
* from 22.4 before 22.4R3, 
* from 23.2 before 23.2R2, 
* from 23.4 before 23.4R2.

*Credits: N/A
CVSS Scores
Attack Vector
Adjacent
Attack Complexity
Low
Attack Requirements
None
Privileges Required
None
User Interaction
None
System
Vulnerable | Subsequent
Confidentiality
None
None
Integrity
None
None
Availability
High
Low
Attack Vector
Adjacent
Attack Complexity
Low
Attack Requirements
None
Privileges Required
None
User Interaction
None
System
Vulnerable | Subsequent
Confidentiality
None
None
Integrity
None
None
Availability
High
Low
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
* Common Vulnerability Scoring System
SSVC
  • Decision:Track
Exploitation
None
Automatable
No
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2024-09-25 CVE Reserved
  • 2024-10-11 CVE Published
  • 2024-10-12 EPSS Updated
  • 2024-11-08 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-401: Missing Release of Memory after Effective Lifetime
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Juniper Networks
Search vendor "Juniper Networks"
Junos OS
Search vendor "Juniper Networks" for product "Junos OS"
< 21.2R3-S7
Search vendor "Juniper Networks" for product "Junos OS" and version " < 21.2R3-S7"
en
Affected
Juniper Networks
Search vendor "Juniper Networks"
Junos OS
Search vendor "Juniper Networks" for product "Junos OS"
>= 21.4 < 21.4R3-S6
Search vendor "Juniper Networks" for product "Junos OS" and version " >= 21.4 < 21.4R3-S6"
en
Affected
Juniper Networks
Search vendor "Juniper Networks"
Junos OS
Search vendor "Juniper Networks" for product "Junos OS"
>= 22.1 < 22.1R3-S5
Search vendor "Juniper Networks" for product "Junos OS" and version " >= 22.1 < 22.1R3-S5"
en
Affected
Juniper Networks
Search vendor "Juniper Networks"
Junos OS
Search vendor "Juniper Networks" for product "Junos OS"
>= 22.2 < 22.2R3-S3
Search vendor "Juniper Networks" for product "Junos OS" and version " >= 22.2 < 22.2R3-S3"
en
Affected
Juniper Networks
Search vendor "Juniper Networks"
Junos OS
Search vendor "Juniper Networks" for product "Junos OS"
>= 22.3 < 22.3R3-S2
Search vendor "Juniper Networks" for product "Junos OS" and version " >= 22.3 < 22.3R3-S2"
en
Affected
Juniper Networks
Search vendor "Juniper Networks"
Junos OS
Search vendor "Juniper Networks" for product "Junos OS"
>= 22.4 < 22.4R3
Search vendor "Juniper Networks" for product "Junos OS" and version " >= 22.4 < 22.4R3"
en
Affected
Juniper Networks
Search vendor "Juniper Networks"
Junos OS
Search vendor "Juniper Networks" for product "Junos OS"
>= 23.2 < 23.2R2
Search vendor "Juniper Networks" for product "Junos OS" and version " >= 23.2 < 23.2R2"
en
Affected
Juniper Networks
Search vendor "Juniper Networks"
Junos OS
Search vendor "Juniper Networks" for product "Junos OS"
>= 23.4 < 23.4R2
Search vendor "Juniper Networks" for product "Junos OS" and version " >= 23.4 < 23.4R2"
en
Affected