Denial-of-Service Vulnerability in Junos OS Evolved from Juniper Networks
CVE-2025-52961

7.1HIGH

Key Information:

Vendor
CVE Published:
9 October 2025

Badges

👾 Exploit Exists

What is CVE-2025-52961?

A vulnerability in the Connectivity Fault Management (CFM) daemon and the CFM Manager (cfmman) of Junos OS Evolved can allow an unauthenticated adjacent attacker to exploit resource consumption, leading to a Denial-of-Service (DoS). Attackers can send specific valid traffic that causes a spike in CPU usage and memory leaks resulting in the FPC crash and restart. Continuous receipt of these packets can maintain the DoS state. Administrators are advised to monitor memory usage via processes and consider restarting the device if memory consumption rises significantly.

Affected Version(s)

Junos OS Evolved PTX10001-36MR 23.2R1-EVO < 23.2R2-S4-EVO

Junos OS Evolved PTX10001-36MR 23.4-EVO < 23.4R2-S4-EVO

Junos OS Evolved PTX10001-36MR 24.2-EVO < 24.2R2-EVO

References

CVSS V4

Score:
7.1
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Adjacent Network
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.