Reachable Assertion Vulnerability in Junos OS and Junos OS Evolved by Juniper Networks
CVE-2025-52964

7.1HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Os; Junos Os Evolved
Vendor: CVE Published:; 11 July 2025

🔔 Create Juniper Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-52964?

A vulnerability in the Routing Protocol Daemon (rpd) of Juniper Networks’ Junos OS and Junos OS Evolved permits unauthenticated attackers to trigger a Denial of Service (DoS). Specifically, this occurs when the device receives a carefully crafted BGP UPDATE packet, causing the rpd to crash and subsequently restart. This loop can lead to a persistent DoS condition. For this vulnerability to be exploited, BGP multipath must be configured using 'pause-computation-during-churn', with attacker-sent paths from an established BGP peer.

Affected Version(s)

Junos OS 0 < 21.4R3-S7

Junos OS 22.3 < 22.3R3-S3

Junos OS 22.4 < 22.4R3-S5

References

https://supportportal.juniper.net/JSA100080

vendor-advisory

CVSS V4

Score:

7.1

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Jul 11, 2025
Vulnerability published
Jul 11, 2025
Vulnerability Reserved
Jun 23, 2025