Home

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause an availability impact for downstream devices. When an affected device receives a specific optional, transitive BGP attribute over an existing BGP session, it will be erroneously modified before propagation to peers. When the attribute is detected as malformed by the peers, these peers will most likely terminate the BGP sessions with the affected devices and thereby cause an availability impact due to the resulting routing churn. This issue affects: Junos OS: * all versions before 22.4R3-S8, * 23.2 versions before 23.2R2-S5 * 23.4 versions before 23.4R2-S6, * 24.2 versions before 24.2R2-S2, * 24.4 versions before 24.4R2; Junos OS Evolved: * all versions before 22.4R3-S8-EVO, * 23.2 versions before 23.2R2-S5-EVO, * 23.4 versions before 23.4R2-S6-EVO, * 24.2 versions before 24.2R2-S2-EVO, * 24.4 versions before 24.4R2-EVO.

PUBLISHED Reserved 2025-09-23 | Published 2026-01-15 | Updated 2026-01-15 | Assigner juniper




MEDIUM: 5.8CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

MEDIUM: 6.9CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:L/AU:Y/R:U/RE:M

Problem types

CWE-754 Improper Check for Unusual or Exceptional Conditions

Product status

Default status
unaffected

Any version before 22.4R3-S8
affected

23.2 (semver) before 23.2R2-S5
affected

23.4 (semver) before 23.4R2-S6
affected

24.2 (semver) before 24.2R2-S2
affected

24.4 (semver) before 24.4R2
affected

Default status
unaffected

Any version before 22.4R3-S8-EVO
affected

23.2 (semver) before 23.2R2-S5-EVO
affected

23.4 (semver) before 23.4R2-S6-EVO
affected

24.2 (semver) before 24.2R2-S2-EVO
affected

24.4 (semver) before 24.4R2-EVO
affected

References

supportportal.juniper.net/ vendor-advisory

kb.juniper.net/JSA103161 vendor-advisory

cve.org (CVE-2025-60011)

nvd.nist.gov (CVE-2025-60011)

Download JSON