Denial-of-Service Vulnerability in Junos OS Evolved from Juniper Networks
CVE-2025-52961
Key Information:
- Vendor
Juniper Networks
- Status
- Vendor
- CVE Published:
- 9 October 2025
Badges
What is CVE-2025-52961?
A vulnerability in the Connectivity Fault Management (CFM) daemon and the CFM Manager (cfmman) of Junos OS Evolved can allow an unauthenticated adjacent attacker to exploit resource consumption, leading to a Denial-of-Service (DoS). Attackers can send specific valid traffic that causes a spike in CPU usage and memory leaks resulting in the FPC crash and restart. Continuous receipt of these packets can maintain the DoS state. Administrators are advised to monitor memory usage via processes and consider restarting the device if memory consumption rises significantly.
Affected Version(s)
Junos OS Evolved PTX10001-36MR 23.2R1-EVO < 23.2R2-S4-EVO
Junos OS Evolved PTX10001-36MR 23.4-EVO < 23.4R2-S4-EVO
Junos OS Evolved PTX10001-36MR 24.2-EVO < 24.2R2-EVO