Buffer Access Vulnerability in Juniper Networks Junos OS and Junos OS Evolved
CVE-2025-30651

8.7HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Os; Junos Os Evolved
Vendor: CVE Published:; 9 April 2025

Badges

👾 Exploit Exists

Summary

A Buffer Access vulnerability is present within the routing protocol daemon (rpd) of Juniper Networks' Junos OS and Junos OS Evolved. This flaw allows an unauthenticated attacker to exploit the system through specially crafted ICMPv6 packets sent to an interface configured with 'protocols router-advertisement'. The attacker can trigger a crash and restart of the rpd service, leading to a Denial of Service (DoS) condition. Systems running affected versions with IPv6 enabled are particularly vulnerable to this attack, making it crucial for administrators to apply patches to mitigate the risk.

Affected Version(s)

Junos OS 0 < 21.2R3-S9

Junos OS 21.4 < 21.4R3-S10

Junos OS 22.2 < 22.2R3-S6

References

https://supportportal.juniper.net/JSA96461

vendor-advisory

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Apr 9, 2025
Vulnerability published
Apr 9, 2025
Vulnerability Reserved
Mar 24, 2025