Missing Authentication in Junos OS from Juniper Networks
CVE-2025-30650

8.4HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Os
Vendor: CVE Published:; 8 April 2026

🔔 Create Juniper Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-30650?

A local privilege escalation vulnerability exists in Junos OS from Juniper Networks that allows a privileged attacker to exploit a missing authentication mechanism. This flaw affects various Linux-based line cards running Junos OS, which could lead to unauthorized access and control of the system. It is crucial for customers to update their systems to secure versions and protect their network infrastructure.

Affected Version(s)

Junos OS all versions < 22.4R3-S8

Junos OS 23.2 < 23.2R2-S6

Junos OS 23.4 < 23.4R2-S6

References

https://supportportal.juniper.net/JSA107863

vendor-advisory

https://github.com/orangecertcc/security-research/securit...

third-party-advisory

https://kb.juniper.net/JSA107863

vendor-advisory

CVSS V4

Score:

8.4

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Apr 8, 2026
Vulnerability published
Apr 8, 2026
Vulnerability Reserved
Mar 24, 2025

Credit

Juniper SIRT would like to acknowledge and thank Pierre EMERIAUD & Orange CERT-CC from Orange group for responsibly reporting this vulnerability.

CVE-2025-30650 Data

.