Denial-of-Service Vulnerability in Junos OS Affecting Juniper Networks
CVE-2025-30660

8.7HIGH

Key Information:

Vendor

Juniper Networks
Status
Junos Os
Vendor
CVE Published:
9 April 2025

Badges

👾 Exploit Exists

What is CVE-2025-30660?

A vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks' Junos OS allows an unauthenticated network-based attacker to trigger a Denial-of-Service (DoS). This occurs when the device processes a high volume of specific GRE traffic, leading to a hang in the PFE and halting traffic forwarding. Log entries indicating this issue may include messages about oversized parcels and detected ASIC errors, signaling potential operational disruptions.

Affected Version(s)

Junos OS MX Series 0 < 21.2R3-S9

Junos OS MX Series 21.4 < 21.4R3-S8

Junos OS MX Series 22.2 < 22.2R3-S4

References

https://supportportal.juniper.net/JSA96471
vendor-advisory

CVSS V4

Score:
8.7
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.