What is CVE-2024-39535?

CVE-2024-39535 is a medium-severity vulnerability in Juniper Acx7020, classified under Improper Check for Unusual or Exceptional Conditions. CVSS score: 6.5/10. Published 2024-07-11.

How severe is CVE-2024-39535?

Medium severity. CVSS v3 base score is 6.5 out of 10.

Is CVE-2024-39535 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Juniper Acx7020

CVE-2024-39535

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on ACX 7000 Series allows an unauthenticated, adjacent attacker to cause a Denial-of-Service (…

EPSS: 0.003 (24.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.5 (Medium). Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Juniper Acx7020
Juniper Acx7024
Juniper Acx7024x
Juniper Acx7100
Juniper Acx7300
Juniper Acx7509
Juniper Junos_os_evolved — versions 22.4
Juniper Networks Junos Os Evolved — versions 22.4R2-S1-EVO

Weakness classification (CWE)

CWE-754 — Improper Check for Unusual or Exceptional Conditions

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

sirt@juniper.net (vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2024-39535?: CVE-2024-39535 is a medium-severity vulnerability in Juniper Acx7020, classified under Improper Check for Unusual or Exceptional Conditions. CVSS score: 6.5/10. Published 2024-07-11.
How severe is CVE-2024-39535?: Medium severity. CVSS v3 base score is 6.5 out of 10.
Is CVE-2024-39535 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.