Juniper Networks Junos OS EX4000 Models Denial-of-Service Vulnerability

A denial-of-service vulnerability has been identified in the Internal Device Manager (IDM) of Juniper Networks Junos OS, specifically on EX4000 models with 48 ports (EX4000-48T, EX4000-48P, EX4000-48MP). This vulnerability allows an unauthenticated, network-based attacker to cause a crash and restart of the FXPC process by sending a high volume of traffic to the device. This disruption leads to a complete service outage until the device automatically restarts. The reboot reason indicates a watchdog panic with a core dump, highlighting the severity of the crash. This issue affects Junos OS versions 24.4 prior to 24.4R2 and 25.2 prior to 25.2R1-S2 and 25.2R2.

Impact

Exploitation of this vulnerability causes the FXPC process to crash and restart, leading to a complete service outage until the device has automatically restarted.

Remediation

Users can upgrade to Junos OS versions 24.4R2, 25.2R1-S2, 25.2R2, 25.4R1, or any subsequent release to address this vulnerability. This issue is tracked as PR1898489, which is visible on the Juniper Customer Support website.