CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2025-52947 – Junos OS: ACX Series: When 'hot-standby' mode is configured for an L2 circuit, interface flap causes the FEB to crash
https://notcve.org/view.php?id=CVE-2025-52947
11 Jul 2025 — An Improper Handling of Exceptional Conditions vulnerability in route processing of Juniper Networks Junos OS on specific end-of-life (EOL) ACX Series platforms allows an attacker to crash the Forwarding Engine Board (FEB) by flapping an interface, leading to a Denial of Service (DoS). On ACX1000, ACX1100, ACX2000, ACX2100, ACX2200, ACX4000, ACX5048, and ACX5096 devices, FEB0 will crash when the primary path port of the L2 circuit IGP (Interior Gateway Protocol) on the local device goes down. This issue is ... • https://supportportal.juniper.net/JSA100051 • CWE-755: Improper Handling of Exceptional Conditions •
CVSS: 8.7EPSS: 0%CPEs: 11EXPL: 0CVE-2025-52946 – Junos OS and Junos OS Evolved: With traceoptions enabled, receipt of malformed AS PATH causes RPD crash
https://notcve.org/view.php?id=CVE-2025-52946
11 Jul 2025 — A Use After Free vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Juniper Networks Junos OS Evolved allows an attacker sending a BGP update with a specifically malformed AS PATH to cause rpd to crash, resulting in a Denial of Service (DoS). Continuous receipt of the malformed AS PATH attribute will cause a sustained DoS condition. On all Junos OS and Junos OS Evolved platforms, the rpd process will crash and restart when a specifically malformed AS PATH is received within ... • https://supportportal.juniper.net/JSA100050 • CWE-416: Use After Free •
CVSS: 8.5EPSS: 0%CPEs: 5EXPL: 0CVE-2025-30661 – Junos OS: Low-privileged user can cause script to run as root, leading to privilege escalation
https://notcve.org/view.php?id=CVE-2025-30661
11 Jul 2025 — An Incorrect Permission Assignment for Critical Resource vulnerability in line card script processing of Juniper Networks Junos OS allows a local, low-privileged user to install scripts to be executed as root, leading to privilege escalation. A local user with access to the local file system can copy a script to the router in a way that will be executed as root, as the system boots. Execution of the script as root can lead to privilege escalation, potentially providing the adversary complete control of the ... • https://github.com/orangecertcc/security-research/security/advisories/GHSA-2p66-9j7x-fmch • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 8.7EPSS: 0%CPEs: 6EXPL: 0CVE-2025-30660 – Junos OS: MX Series: Decapsulation of specific GRE packets leads to PFE reset
https://notcve.org/view.php?id=CVE-2025-30660
09 Apr 2025 — An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS on MX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS).When processing a high rate of specific GRE traffic destined to the device, the respective PFE will hang causing traffic forwarding to stop. When this issue occurs the following logs can be observed:
CVSS: 8.7EPSS: 0%CPEs: 6EXPL: 0CVE-2025-30659 – Junos OS: SRX Series: A device configured for vector routing crashes when receiving malformed traffic
https://notcve.org/view.php?id=CVE-2025-30659
09 Apr 2025 — An Improper Handling of Length Parameter Inconsistency vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). When a device configured for Secure Vector Routing (SVR) receives a specifically malformed packet the PFE will crash and restart. This issue affects Junos OS on SRX Series: * All 21.4 versions, * 22.2 versions before 22.2R3-S6, * 22.4 versions before 22.4R3-S6, * 23.2 version... • https://supportportal.juniper.net/JSA96470 • CWE-130: Improper Handling of Length Parameter Inconsistency •
CVSS: 8.7EPSS: 0%CPEs: 7EXPL: 0CVE-2025-30658 – Junos OS: SRX Series: On devices with Anti-Virus enabled, malicious server responses will cause memory to leak ultimately causing forwarding to stop
https://notcve.org/view.php?id=CVE-2025-30658
09 Apr 2025 — A Missing Release of Memory after Effective Lifetime vulnerability in the Anti-Virus processing of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). On all SRX platforms with Anti-Virus enabled, if a server sends specific content in the HTTP body of a response to a client request, these packets are queued by Anti-Virus processing in Juniper Buffers (jbufs) which are never released. When these jbufs are exhausted, the device stops fo... • https://supportportal.juniper.net/JSA96469 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 6.9EPSS: 0%CPEs: 6EXPL: 0CVE-2025-30657 – Junos OS: Processing of a specific BGP update causes the SRRD process to crash
https://notcve.org/view.php?id=CVE-2025-30657
09 Apr 2025 — An Improper Encoding or Escaping of Output vulnerability in the Sampling Route Record Daemon (SRRD) of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). When a device configured for flow-monitoring receives a specific BGP update message, it is correctly processed internally by the routing protocol daemon (rpd), but when it's sent to SRRD it's encoded incorrectly which leads to a crash and momentary interruption of jflow processing until it automa... • https://supportportal.juniper.net/JSA96467 • CWE-116: Improper Encoding or Escaping of Output •
CVSS: 8.7EPSS: 0%CPEs: 8EXPL: 0CVE-2025-30656 – Junos OS: MX Series, SRX Series: Processing of specific SIP INVITE messages by the SIP ALG will lead to an FPC crash
https://notcve.org/view.php?id=CVE-2025-30656
09 Apr 2025 — An Improper Handling of Additional Special Element vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on MX Series with MS-MPC, MS-MIC and SPC3, and SRX Series, allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). If the SIP ALG processes specifically formatted SIP invites, a memory corruption will occur which will lead to a crash of the FPC processing these packets. Although the system will automatically recover with the restart of the FPC, sub... • https://supportportal.juniper.net/JSA96466 • CWE-167: Improper Handling of Additional Special Element •
CVSS: 6.8EPSS: 0%CPEs: 12EXPL: 0CVE-2025-30655 – Junos OS and Junos OS Evolved: A specific CLI command will cause an RPD crash when rib-sharding and update-threading is enabled
https://notcve.org/view.php?id=CVE-2025-30655
09 Apr 2025 — An Improper Check for Unusual or Exceptional Conditions vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged attacker to cause a Denial-of-Service (DoS). When a specific "show bgp neighbor" CLI command is run, the rpd cpu utilization rises and eventually causes a crash and restart. Repeated use of this command will cause a sustained DoS condition. The device is only affected if BGP RIB sharding and update-threading is enabled. Th... • https://supportportal.juniper.net/JSA96465 • CWE-754: Improper Check for Unusual or Exceptional Conditions •
CVSS: 6.8EPSS: 0%CPEs: 10EXPL: 0CVE-2025-30654 – Junos OS and Junos OS Evolved: A local, low privileged user can access sensitive information
https://notcve.org/view.php?id=CVE-2025-30654
09 Apr 2025 — An Exposure of Sensitive Information to an Unauthorized Actor vulnerability in the User Interface (UI) of Juniper Networks Junos OS and Junos OS Evolved allows a local, low-privileged, authenticated attacker with access to the CLI to access sensitive information. Through the execution of a specific show mgd command, a user with limited permissions (e.g., a low-privileged login class user) can access sensitive information such as hashed passwords, that can be used to further impact the system. This issue aff... • https://supportportal.juniper.net/JSA96464 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •