CVE-2025-30659
Junos OS: SRX Series: A device configured for vector routing crashes when receiving malformed traffic
We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.
Please see our statement on Data Privacy.
Junos OS: SRX Series: A device configured for vector routing crashes when receiving malformed traffic
An Improper Handling of Length Parameter Inconsistency vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). When a device configured for Secure Vector Routing (SVR) receives a specifically malformed packet the PFE will crash and restart. This issue affects Junos OS on SRX Series: * All 21.4 versions, * 22.2 versions before 22.2R3-S6, * 22.4 versions before 22.4R3-S6, * 23.2 versions before 23.2R2-S3, * 23.4 versions before 23.4R2-S4, * 24.2 versions before 24.2R2. This issue does not affect versions before 21.4.
Reserved 2025-03-24 | Published 2025-04-09 | Updated 2025-04-09 | Assigner juniperCWE-130 Improper Handling of Length Parameter Inconsistency
| 2025-04-09: | Initial Publication |
supportportal.juniper.net/JSA96470
Support options
