Memory Leak Vulnerability in Junos OS on SRX Series by Juniper Networks
CVE-2025-30658

8.7HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Os
Vendor: CVE Published:; 9 April 2025

🔔 Create Juniper Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-30658?

An unauthenticated attacker can exploit a memory leak in the Anti-Virus processing of Junos OS on SRX Series devices. When specific HTTP response content is sent by a server, it causes packets to become trapped in Juniper Buffers, which are never released. This accumulation can lead to exhaustion of the jbuf resources, resulting in a denial of service as the device halts all traffic forwarding. The issue requires a manual reboot to recover from the memory leak, as indicated by warning logs about jbuf pool utilization.

Affected Version(s)

Junos OS SRX Series 0 < 21.2R3-S9

Junos OS SRX Series 21.4 < 21.4R3-S10

Junos OS SRX Series 22.2 < 22.2R3-S6

References

https://supportportal.juniper.net/JSA96469

vendor-advisory

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Apr 9, 2025
Vulnerability published
Apr 9, 2025
Vulnerability Reserved
Mar 24, 2025