Improper Condition Check in Juniper Networks Junos OS Causes DoS Vulnerability
CVE-2025-30655

6.8MEDIUM

Key Information:

Vendor: Juniper Networks
Status: Junos Os; Junos Os Evolved
Vendor: CVE Published:; 9 April 2025

Badges

👾 Exploit Exists

Summary

A vulnerability exists in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved, which allows local attackers with low privileges to exploit a command, specifically 'show bgp neighbor'. When executed, this command increases CPU utilization in rpd, leading to device crashes and restarts. Continued use of the command can result in a sustained Denial-of-Service (DoS) scenario. To be impacted, the device must have BGP RIB sharding and update-threading enabled.

Affected Version(s)

Junos OS 0 < 21.2R3-S9

Junos OS 21.4 < 21.4R3-S8

Junos OS 22.2 < 22.2R3-S6

References

https://supportportal.juniper.net/JSA96465

vendor-advisory

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Apr 9, 2025
Vulnerability published
Apr 9, 2025
Vulnerability Reserved
Mar 24, 2025