Ref# ADV2024_340 | Date: Oct 7th 2024

---

Juniper has published a security advisory to address vulnerabilities affecting the following products on September 30, 2024. It is recommended that you take the necessary precautions to ensure your products are always protected.

• Junos OS – multiple versions
• Juno OS Evolved – multiple versions
• Junos OS on cRPD – versions 23.4 to versions prior to 23.4R3-S5, versions 24.2 to versions prior to 24.2R2

For more information on these updates, you can follow these URLs:

1. https://www.cyber.gc.ca/en/alerts-advisories/radius-protocol-susceptible-forgery-attacks
2. https://supportportal.juniper.net/s/article/2024-09-30-Out-of-Cycle-Security-Advisory-Multiple-Products-RADIUS-protocol-susceptible-to-forgery-attacks-Blast-RADIUS-CVE-2024-3596?language=en_US

The Guyana National CIRT recommends that users and administrators review these updates and apply them where necessary.

PDF Download: Juniper Security Advisory

References

• Juniper Support Portal. (2024, September 30). Retrieved from Juniper. https://supportportal.juniper.net/s/global-search/%40uri?language=en_US#sort=relevancy
• Juniper security advisory. (2024, October 2). Retrieved from Canadian Centre for Cyber Security. https://www.cyber.gc.ca/en/alerts-advisories/juniper-networks-security-advisory-av24-554