Main Vulnerability Database Vulnerabilities #VU121662

#VU121662 Buffer Over-read in Junos OS Evolved and Juniper Junos OS - CVE-2025-60003

Published: January 19, 2026

Vulnerability identifier: #VU121662

Vulnerability risk: Medium

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2025-60003

CWE-ID: CWE-126

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
Junos OS Evolved
Juniper Junos OS

Software vendor:
Juniper Networks, Inc.

Description

The vulnerability allows a remote non-authenticated attacker to perform a denial of service (DoS) attack.

A Buffer Over-read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS).

When an affected device receives a BGP update with a set of specific optional transitive attributes over an established peering session, rpd will crash and restart when attempting to advertise the received information to another peer.

Remediation

Install updates from vendor's website.

External links

https://supportportal.juniper.net/s/article/2026-01-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-BGP-update-with-a-set-of-specific-attributes-causes-rpd-crash-CVE-2025-60003

#VU121662 Buffer Over-read in Junos OS Evolved and Juniper Junos OS - CVE-2025-60003

Description

Remediation

External links

Please verify you're human