CVE-2025-30650
published 2026-04-08CVE-2025-30650: A Missing Authentication for Critical Function vulnerability in command processing of Juniper Networks Junos OS allows a privileged local attacker to gain…
high8.4CVSS 4.0
AVLACLATNPRHUINVCHVIHVAHSCLSILSALEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUNRAVCREMUAmber
A Missing Authentication for Critical Function vulnerability in command processing of Juniper Networks Junos OS allows a privileged local attacker to gain access to line cards running Junos OS Evolved as root. This issue affects systems running Junos OS using Linux-based line cards. Affected line cards include: * MPC7, MPC8, MPC9, MPC10, MPC11 * LC2101, LC2103 * LC480, LC4800, LC9600 * MX304 (built-in FPC) * MX-SPC3 * SRX5K-SPC3 * EX9200-40XS * FPC3-PTX-U2, FPC3-PTX-U3 * FPC3-SFF-PTX * LC1101, LC1102, LC1104, LC1105 This issue affects Junos OS: * all versions before 22.4R3-S8, * from 23.2 before 23.2R2-S6, * from 23.4 before 23.4R2-S6, * from 24.2 before 24.2R2-S3, * from 24.4 before 24.4R2, * from 25.2 before 25.2R2.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| juniper | junos_os | — | — |
| juniper | srx_series | — | — |
| juniper_networks | junos_os | < 22.4R3-S8 | 22.4R3-S8 |
| juniper_networks | junos_os | >= 23.2 < 23.2R2-S6 | 23.2R2-S6 |
| juniper_networks | junos_os | >= 23.4 < 23.4R2-S6 | 23.4R2-S6 |
| juniper_networks | junos_os | >= 24.2 < 24.2R2-S3 | 24.2R2-S3 |
| juniper_networks | junos_os | >= 24.4 < 24.4R2 | 24.4R2 |
| juniper_networks | junos_os | >= 25.2 < 25.2R2 | 25.2R2 |