CVE-2025-30653 — Expired Pointer Dereference in Networks Junos OS

CWE-825 — Expired Pointer Dereference4 documents4 sources

Severity

6.0MEDIUMNVD

EPSS

0.1%

top 67.24%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Juniper Networks Junos OS Evolved Juniper Junos +1 more

Timeline

PublishedApr 9

Description

An Expired Pointer Dereference vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker to cause Denial of Service (DoS).On all Junos OS and Junos OS Evolved platforms, when an MPLS Label-Switched Path (LSP) is configured with node-link-protection and transport-class, and an LSP flaps, rpd crashes and restarts. Continuous flapping of LSP can cause a sustained Denial of Service (DoS) condition. This issue affect…

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Affected Packages4 packages

▶CVEListV5juniper_networks/junos_os_evolved22.4-EVO — 22.4R3-S2-EVO+3

▶NVDjuniper/junos_os_evolved< 22.2+4

▶CVEListV5juniper_networks/junos_os22.4 — 22.4R3-S2+3

▶NVDjuniper/junos< 22.2+4

🔴Vulnerability Details

CVEList

Junos OS and Junos OS Evolved: LSP flap in a specific MPLS scenario leads to rpd crash↗2025-04-09

▶

GHSA

GHSA-64rh-h733-hq6g: An Expired Pointer Dereference vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthentica↗2025-04-09

▶

📋Vendor Advisories

Juniper

CVE-2025-30653: An Expired Pointer Dereference vulnerability in Routing Protocol Daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthentica↗2025-04-09

▶