{"uuid": "79831481-8c1a-4417-b366-00da97a4e004", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-39557", "type": "seen", "source": "https://t.me/cvedetector/609", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-39557 - An Uncontrolled Resource Consumption vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-39557 \nPublished : July 10, 2024, 11:15 p.m. | 16\u00a0minutes ago \nDescription : An Uncontrolled Resource Consumption vulnerability in the   \n  \nLayer 2 Address Learning Daemon (l2ald)  \n  \n of Juniper Networks Junos OS Evolved allows an unauthenticated, adjacent attacker to cause a memory leak, eventually exhausting all system memory, leading to a system crash and Denial of Service (DoS).  \n  \nCertain MAC table updates cause a small amount of memory to leak.\u00a0 Once memory utilization reaches its limit, the issue will result in a system crash and restart.  \n  \nTo identify the issue, execute the CLI command:  \n   \nuser@device> show platform application-info allocations app l2ald-agent  \nEVL Object Allocation Statistics:  \n   \n Node  \u00a0 Application  \u00a0 \u00a0  Context   Name  \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0  Live  \u00a0  Allocs  \u00a0  Fails  \u00a0 \u00a0  Guids  \n re0  \u00a0  l2ald-agent  \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0  net::juniper::rtnh::L2Rtinfo  \u00a0 \u00a0 \u00a0  1069096  1069302  \u00a0 0  \u00a0 \u00a0 \u00a0 \u00a0  1069302  \n re0  \u00a0  l2ald-agent  \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0  net::juniper::rtnh::NHOpaqueTlv  \u00a0 \u00a0  114  \u00a0 \u00a0 195  \u00a0 \u00a0 \u00a0 0  \u00a0 \u00a0 \u00a0 \u00a0  195  \n  \n  \n  \nThis issue affects Junos OS Evolved:   \n  \n  \n  *  All versions before 21.4R3-S8-EVO,  \n  \n  *  from 22.2-EVO before 22.2R3-S4-EVO,   \n  *  from 22.3-EVO\u00a0before 22.3R3-S3-EVO,   \n  *  from 22.4-EVO before 22.4R3-EVO,   \n  *  from 23.2-EVO before 23.2R2-EVO. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Jul 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-07-11T01:35:29.000000Z"}