UI Discrepancy in Juniper Networks Junos OS Allows Unauthorized Access
CVE-2025-52983

8.6HIGH

Key Information:

Vendor: Juniper Networks
Status: Junos Os
Vendor: CVE Published:; 11 July 2025

🔔 Create Juniper Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-52983?

A security flaw exists in Juniper Networks Junos OS on VM Host systems where an attacker can exploit a UI discrepancy. Despite the removal of the configured public key for root access, remote users possessing the corresponding private key can still gain root login credentials. This vulnerability impacts various versions of Junos OS, enabling potential unauthorized access to system resources, necessitating timely patches and updates from affected users.

Affected Version(s)

Junos OS 0 < 22.2R3-S7

Junos OS 22.4 < 22.4R3-S5

Junos OS 23.2 < 23.2R2-S3

References

https://supportportal.juniper.net/JSA100089

vendor-advisory

https://www.juniper.net/documentation/us/en/software/juno...

technical-description

CVSS V4

Score:

8.6

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Timeline

👾
Exploit known to exist
Jul 11, 2025
Vulnerability published
Jul 11, 2025
Vulnerability Reserved
Jun 23, 2025

JSON