Home

Description

A password aging vulnerability in the RADIUS client of Juniper Networks Junos OS and Junos OS Evolved allows an authenticated, network-based attacker to access the device without enforcing the required password change. Affected devices allow logins by users for whom the RADIUS server has responded with a reject and required the user to change the password as their password was expired. Therefore the policy mandating the password change is not enforced. This does not allow users to login with a wrong password, but only with the correct but expired one. This issue affects: Junos OS:  * all versions before 22.4R3-S8, * 23.2 versions before 23.2R2-S4, * 23.4 versions before 23.4R2-S5, * 24.2 versions before 24.2R2-S1, * 24.4 versions before 24.4R1-S3, 24.4R2; Junos OS Evolved: * all versions before 22.4R3-S8-EVO, * 23.2 versions before 23.2R2-S4-EVO, * 23.4 versions before 23.4R2-S5-EVO, * 24.2 versions before 24.2R2-S1-EVO, * 24.4 versions before 24.4R1-S3-EVO, 24.4R2-EVO.

PUBLISHED Reserved 2025-09-23 | Published 2025-10-09 | Updated 2025-10-09 | Assigner juniper




MEDIUM: 5.4CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

MEDIUM: 5.3CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/RE:M

Problem types

CWE-262 Not Using Password Aging

Product status

Default status
unaffected

Any version before 22.4R3-S8
affected

23.2 before 23.2R2-S4
affected

23.4 before 23.4R2-S5
affected

24.2 before 24.2R2-S1
affected

24.4 before 24.4R1-S3, 24.4R2
affected

Default status
unaffected

Any version before 22.4R3-S8-EVO
affected

23.2 before 23.2R2-S4-EVO
affected

23.4 before 23.4R2-S5-EVO
affected

24.2 before 24.2R2-S1-EVO
affected

24.4 before 24.4R1-S3-EVO, 24.4R2-EVO
affected

References

supportportal.juniper.net/JSA103168 vendor-advisory

cve.org (CVE-2025-60010)

nvd.nist.gov (CVE-2025-60010)

Download JSON