{
    "data_version": "4.0",
    "data_type": "CVE",
    "data_format": "MITRE",
    "CVE_data_meta": {
        "ID": "CVE-2024-30402",
        "ASSIGNER": "sirt@juniper.net",
        "STATE": "PUBLIC"
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "An Improper Check for Unusual or Exceptional Conditions vulnerability in the Layer 2 Address Learning Daemon\u00a0(l2ald) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS).\n\nWhen telemetry requests are sent to the device,\u00a0and the Dynamic Rendering Daemon (drend) is suspended, the l2ald crashes and restarts due to factors outside the attackers control. Repeated occurrences of these events causes a sustained DoS condition.\n\n\nThis issue affects:\nJunos OS:\n  *  All versions earlier than\u00a020.4R3-S10;\n  *  21.2 versions earlier than\u00a021.2R3-S7;\n  *  21.4 versions earlier than\u00a021.4R3-S5;\n  *  22.1 versions earlier than\u00a022.1R3-S4;\n  *  22.2 versions earlier than\u00a022.2R3-S3;\n  *  22.3 versions earlier than\u00a022.3R3-S1;\n  *  22.4 versions earlier than\u00a022.4R3;\n  *  23.2 versions earlier than\u00a023.2R1-S2, 23.2R2.\n\n\n\nJunos OS Evolved:\n\n  *  All versions earlier than\u00a021.4R3-S5-EVO;\n  *  22.1-EVO versions earlier than\u00a022.1R3-S4-EVO;\n  *  22.2-EVO versions earlier than\u00a022.2R3-S3-EVO;\n  *  22.3-EVO versions earlier than\u00a022.3R3-S1-EVO;\n  *  22.4-EVO versions earlier than\u00a022.4R3-EVO;\n  *  23.2-EVO versions earlier than\u00a023.2R2-EVO."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "CWE-754 Improper Check for Unusual or Exceptional Conditions",
                        "cweId": "CWE-754"
                    }
                ]
            },
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Denial of Service (DoS)"
                    }
                ]
            }
        ]
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "Juniper Networks",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "Junos OS",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_affected": "<",
                                            "version_name": "20.4",
                                            "version_value": "20.4R3-S10"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "21.2",
                                            "version_value": "21.2R3-S7"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "21.4",
                                            "version_value": "21.4R3-S5"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "22.1",
                                            "version_value": "22.1R3-S4"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "22.2",
                                            "version_value": "22.2R3-S3"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "22.3",
                                            "version_value": "22.3R3-S1"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "22.4",
                                            "version_value": "22.4R3"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "23.2",
                                            "version_value": "23.2R1-S2, 23.2R2"
                                        }
                                    ]
                                }
                            },
                            {
                                "product_name": "Junos OS Evolved",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_affected": "<",
                                            "version_name": "21.4-EVO",
                                            "version_value": "21.4R3-S5-EVO"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "22.1-EVO",
                                            "version_value": "22.1R3-S4-EVO"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "22.2-EVO",
                                            "version_value": "22.2R3-S3-EVO"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "22.3-EVO",
                                            "version_value": "22.3R3-S1-EVO"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "22.4-EVO",
                                            "version_value": "22.4R3-EVO"
                                        },
                                        {
                                            "version_affected": "<",
                                            "version_name": "23.2-EVO",
                                            "version_value": "23.2R2-EVO"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "references": {
        "reference_data": [
            {
                "url": "https://supportportal.juniper.net/JSA79180",
                "refsource": "MISC",
                "name": "https://supportportal.juniper.net/JSA79180"
            },
            {
                "url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L",
                "refsource": "MISC",
                "name": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L"
            }
        ]
    },
    "generator": {
        "engine": "Vulnogram 0.1.0-dev"
    },
    "source": {
        "advisory": "JSA79180",
        "defect": [
            "1743744"
        ],
        "discovery": "INTERNAL"
    },
    "work_around": [
        {
            "lang": "en",
            "supportingMedia": [
                {
                    "base64": false,
                    "type": "text/html",
                    "value": "<p>There are no known workarounds for this issue.</p>"
                }
            ],
            "value": "There are no known workarounds for this issue."
        }
    ],
    "exploit": [
        {
            "lang": "en",
            "supportingMedia": [
                {
                    "base64": false,
                    "type": "text/html",
                    "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
                }
            ],
            "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."
        }
    ],
    "solution": [
        {
            "lang": "en",
            "supportingMedia": [
                {
                    "base64": false,
                    "type": "text/html",
                    "value": "The following software releases have been updated to resolve this specific issue: <br>Junos OS Evolved: 21.4R3-S5-EVO, 22.1R3-S4-EVO, 22.2R3-S3-EVO, 22.3R3-S1-EVO, 22.4R3-EVO, 23.2R2-EVO, 23.4R1-EVO, and all subsequent releases.<br>Junos OS: 20.4R3-S10, 21.2R3-S7, 21.4R3-S5, 22.1R3-S4, 22.2R3-S3, 22.3R3-S1, 22.4R3, 23.2R1-S2, 23.2R2, 23.4R1, and all subsequent releases.<br>"
                }
            ],
            "value": "The following software releases have been updated to resolve this specific issue: \nJunos OS Evolved: 21.4R3-S5-EVO, 22.1R3-S4-EVO, 22.2R3-S3-EVO, 22.3R3-S1-EVO, 22.4R3-EVO, 23.2R2-EVO, 23.4R1-EVO, and all subsequent releases.\nJunos OS: 20.4R3-S10, 21.2R3-S7, 21.4R3-S5, 22.1R3-S4, 22.2R3-S3, 22.3R3-S1, 22.4R3, 23.2R1-S2, 23.2R2, 23.4R1, and all subsequent releases."
        }
    ],
    "impact": {
        "cvss": [
            {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 5.9,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
            }
        ]
    }
}