An Improper Input Validation vulnerability in the Packet...
Moderate severity
Unreviewed
Published
Jul 11, 2024
to the GitHub Advisory Database
•
Updated Aug 9, 2024
Description
Published by the National Vulnerability Database
Jul 10, 2024
Published to the GitHub Advisory Database
Jul 11, 2024
Last updated
Aug 9, 2024
An Improper Input Validation vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved allows a local, low-privileged attacker to cause a Denial of Service (DoS).
When a specific "clear" command is run, the Advanced Forwarding Toolkit manager (evo-aftmand-bt or evo-aftmand-zx) crashes and restarts.
The crash impacts all traffic going through the FPCs, causing a DoS. Running the command repeatedly leads to a sustained DoS condition.
This issue affects Junos OS Evolved:
References