Denial-of-Service Vulnerability in Junos OS Affecting Juniper Networks
CVE-2025-30660

8.7HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Os
Vendor: CVE Published:; 9 April 2025

Badges

👾 Exploit Exists

Summary

A vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks' Junos OS allows an unauthenticated network-based attacker to trigger a Denial-of-Service (DoS). This occurs when the device processes a high volume of specific GRE traffic, leading to a hang in the PFE and halting traffic forwarding. Log entries indicating this issue may include messages about oversized parcels and detected ASIC errors, signaling potential operational disruptions.

Affected Version(s)

Junos OS MX Series 0 < 21.2R3-S9

Junos OS MX Series 21.4 < 21.4R3-S8

Junos OS MX Series 22.2 < 22.2R3-S4

References

https://supportportal.juniper.net/JSA96471

vendor-advisory

CVSS V4

Score:

8.7

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Apr 9, 2025
Vulnerability published
Apr 9, 2025
Vulnerability Reserved
Mar 24, 2025