Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2024-30397

An Improper Check for Unusual or Exceptional Conditions vulnerability in the the Public Key Infrastructure daemon (pkid) of Juniper Networks Junos OS allows an unauthenticated networked attacker to cause Denial of Service (DoS).

The pkid is responsible for the certificate verification. Upon a failed verification, the pkid uses all CPU resources and becomes unresponsive to future verification attempts. This means that all subsequent VPN negotiations depending on certificate verification will fail.

This CPU utilization of pkid can be checked using this command:   root@srx> show system processes extensive | match pkid   xxxxx root 103 0 846M 136M CPU1 1 569:00 100.00% pkid

This issue affects: Juniper Networks Junos OS

  • All versions prior to 20.4R3-S10;
  • 21.2 versions prior to 21.2R3-S7;
  • 21.4 versions prior to 21.4R3-S5;
  • 22.1 versions prior to 22.1R3-S4;
  • 22.2 versions prior to 22.2R3-S3;
  • 22.3 versions prior to 22.3R3-S1;
  • 22.4 versions prior to 22.4R3;
  • 23.2 versions prior to 23.2R1-S2, 23.2R2.
  • Published: Apr 12, 2024
  • Updated: May 17, 2024
  • CVE: CVE-2024-30397
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWEs:

Software From Fixed in
juniper / junos 20.4-r1 20.4-r1.x
juniper / junos 20.4-r1-s1 20.4-r1-s1.x
juniper / junos 20.4-r2 20.4-r2.x
juniper / junos 21.2-r1 21.2-r1.x
juniper / junos 20.4-r2-s1 20.4-r2-s1.x
juniper / junos 21.2-r1-s1 21.2-r1-s1.x
juniper / junos 20.4-r3 20.4-r3.x
juniper / junos 21.2-r2 21.2-r2.x
juniper / junos 20.4-r3-s1 20.4-r3-s1.x
juniper / junos 20.4-r2-s2 20.4-r2-s2.x
juniper / junos 21.2 21.2.x
juniper / junos 20.4 20.4.x
juniper / junos 21.2-r1-s2 21.2-r1-s2.x
juniper / junos 21.2-r2-s1 21.2-r2-s1.x
juniper / junos 21.2-r2-s2 21.2-r2-s2.x
juniper / junos 21.4-r1-s1 21.4-r1-s1.x
juniper / junos 21.4-r1 21.4-r1.x
juniper / junos 21.4-r1-s2 21.4-r1-s2.x
juniper / junos 20.4-r3-s2 20.4-r3-s2.x
juniper / junos 20.4-r3-s3 20.4-r3-s3.x
juniper / junos 20.4-r3-s4 20.4-r3-s4.x
juniper / junos 20.4-r3-s5 20.4-r3-s5.x
juniper / junos 21.2-r3 21.2-r3.x
juniper / junos 21.2-r3-s1 21.2-r3-s1.x
juniper / junos 21.2-r3-s2 21.2-r3-s2.x
juniper / junos 21.4 21.4.x
juniper / junos 21.4-r2 21.4-r2.x
juniper / junos 21.4-r2-s1 21.4-r2-s1.x
juniper / junos 21.4-r2-s2 21.4-r2-s2.x
juniper / junos 21.4-r3 21.4-r3.x
juniper / junos 22.1-r1 22.1-r1.x
juniper / junos 22.1-r1-s1 22.1-r1-s1.x
juniper / junos 22.1-r1-s2 22.1-r1-s2.x
juniper / junos 22.1-r2 22.1-r2.x
juniper / junos 22.1-r2-s2 22.1-r2-s2.x
juniper / junos 22.1-r3 22.1-r3.x
juniper / junos 22.1-r3-s1 22.1-r3-s1.x
juniper / junos 22.2-r1 22.2-r1.x
juniper / junos 22.2-r1-s1 22.2-r1-s1.x
juniper / junos 22.2-r2 22.2-r2.x
juniper / junos 22.3-r1 22.3-r1.x
juniper / junos 22.3-r2 22.3-r2.x
juniper / junos - 20.4
juniper / junos 20.4-r3-s6 20.4-r3-s6.x
juniper / junos 21.2-r3-s3 21.2-r3-s3.x
juniper / junos 21.4-r3-s1 21.4-r3-s1.x
juniper / junos 21.4-r3-s2 21.4-r3-s2.x
juniper / junos 21.4-r3-s3 21.4-r3-s3.x
juniper / junos 22.1-r2-s1 22.1-r2-s1.x
juniper / junos 22.1-r3-s2 22.1-r3-s2.x
juniper / junos 22.2-r1-s2 22.2-r1-s2.x
juniper / junos 22.2-r2-s1 22.2-r2-s1.x
juniper / junos 22.3-r1-s1 22.3-r1-s1.x
juniper / junos 22.4-r1 22.4-r1.x
juniper / junos 20.4-r3-s7 20.4-r3-s7.x
juniper / junos 20.4-r3-s8 20.4-r3-s8.x
juniper / junos 20.4-r3-s9 20.4-r3-s9.x
juniper / junos 21.2-r3-s4 21.2-r3-s4.x
juniper / junos 21.2-r3-s5 21.2-r3-s5.x
juniper / junos 21.2-r3-s6 21.2-r3-s6.x
juniper / junos 21.4-r3-s4 21.4-r3-s4.x
juniper / junos 22.1 22.1.x
juniper / junos 22.1-r3-s3 22.1-r3-s3.x
juniper / junos 22.2 22.2.x
juniper / junos 22.2-r2-s2 22.2-r2-s2.x
juniper / junos 22.2-r3 22.2-r3.x
juniper / junos 22.2-r3-s1 22.2-r3-s1.x
juniper / junos 22.2-r3-s2 22.2-r3-s2.x
juniper / junos 22.3 22.3.x
juniper / junos 22.3-r1-s2 22.3-r1-s2.x
juniper / junos 22.3-r2-s1 22.3-r2-s1.x
juniper / junos 22.3-r2-s2 22.3-r2-s2.x
juniper / junos 22.3-r3 22.3-r3.x
juniper / junos 22.4 22.4.x
juniper / junos 22.4-r1-s1 22.4-r1-s1.x
juniper / junos 22.4-r1-s2 22.4-r1-s2.x
juniper / junos 22.4-r2 22.4-r2.x
juniper / junos 22.4-r2-s1 22.4-r2-s1.x
juniper / junos 22.4-r2-s2 22.4-r2-s2.x
juniper / junos 23.2 23.2.x
juniper / junos 23.2-r1 23.2-r1.x
juniper / junos 23.2-r1-s1 23.2-r1-s1.x