Improper Access Control in Juniper Networks Junos OS
CVE-2025-52963

6.8MEDIUM

Key Information:

Vendor: Juniper Networks
Status: Junos Os
Vendor: CVE Published:; 11 July 2025

🔔 Create Juniper Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-52963?

An Improper Access Control vulnerability in the User Interface (UI) of Juniper Networks' Junos OS enables low-privileged local attackers to shut down an interface. This can potentially lead to a Denial-of-Service condition. Particularly, users with 'view' permissions can execute a specific request interface command, which may result in disrupting essential services. The issue affects several versions of Junos OS prior to updates aimed at addressing this serious concern.

Affected Version(s)

Junos OS 0 < 21.2R3-S9

Junos OS 21.4 < 21.4R3-S11

Junos OS 22.2 < 22.2R3-S7

References

https://supportportal.juniper.net/JSA100078

vendor-advisory

CVSS V4

Score:

6.8

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Jul 11, 2025
Vulnerability published
Jul 11, 2025
Vulnerability Reserved
Jun 23, 2025

JSON