CVE-2025-21597

CWE-7544 documents4 sources

Severity

6.0MEDIUM

EPSS

0.2%

top 55.33%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Juniper Networks Junos OS Evolved Juniper Junos +1 more

Timeline

PublishedApr 9

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, logically adjacent BGP peer to cause Denial of Service (DoS). On all Junos OS and Junos OS Evolved platforms, when BGP rib-sharding and update-threading are configured, and a BGP peer flap is done with specific timing, rpd crashes and restarts. Continuous peer flapping at specific time intervals will result in a susta…

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Affected Packages4 packages

▶CVEListV5juniper_networks/junos_os_evolved21.3-EVO — 21.3R3-S5-EVO+6

▶NVDjuniper/junos_os_evolved< 21.2+7

▶CVEListV5juniper_networks/junos_os21.2 — 21.2R3-S6+7

▶NVDjuniper/junos< 20.4+8

🔴Vulnerability Details

GHSA

GHSA-2h84-xh8m-6c6r: An Improper Check for Unusual or Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolv↗2025-04-09

▶

CVEList

Junos OS and Junos OS Evolved: When BGP rib-sharding and update-threading are configured and a peer flaps, an rpd core is observed↗2025-04-09

▶

📋Vendor Advisories

Juniper

CVE-2025-21597: An Improper Check for Unusual or Exceptional Conditions vulnerability in routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolv↗2025-04-09

▶