Denial of Service Vulnerability in Juniper Networks Junos OS Routing Protocol Daemon
CVE-2025-52953

7.1HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Os; Junos Os Evolved
Vendor: CVE Published:; 11 July 2025

🔔 Create Juniper Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-52953?

A vulnerability in the routing protocol daemon (rpd) of Juniper Networks' Junos OS and Junos OS Evolved could allow an unauthenticated adjacent attacker to exploit valid BGP UPDATE packets. This can lead to repeated resets of BGP sessions, ultimately resulting in a Denial of Service (DoS) condition. Both iBGP and eBGP are susceptible to this vulnerability, affecting both IPv4 and IPv6 connections. Continuous processing of the malicious packets can cause a sustained disruption, impacting network operations.

Affected Version(s)

Junos OS 0 < 21.2R3-S9

Junos OS 21.4 < 21.4R3-S11

Junos OS 22.2 < 22.2R3-S7

References

https://supportportal.juniper.net/JSA100059

vendor-advisory

https://www.juniper.net/documentation/us/en/software/juno...

technical-description

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Jul 11, 2025
Vulnerability published
Jul 11, 2025
Vulnerability Reserved
Jun 23, 2025