cbcvebase.
CVE-2025-52984
published 2025-07-11

CVE-2025-52984: A NULL Pointer Dereference vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated…

high8.2CVSS 4.0
AVNACLATPPRNUINVCNVINVAHSCNSINSALEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUYRAVXREMUX
A NULL Pointer Dereference vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause impact to the availability of the device. When static route points to a reject next hop and a gNMI query is processed for that static route, rpd crashes and restarts. This issue affects: Junos OS: * all versions before 21.2R3-S9, * 21.4 versions before 21.4R3-S10, * 22.2 versions before 22.2R3-S6, * 22.4 versions before 22.4R3-S6, * 23.2 versions before 23.2R2-S3, * 23.4 versions before 23.4R2-S4, * 24.2 versions before 24.2R1-S2, 24.2R2; Junos OS Evolved: * all versions before 22.4R3-S7-EVO, * 23.2-EVO versions before 23.2R2-S3-EVO, * 23.4-EVO versions before 23.4R2-S4-EVO, * 24.2-EVO versions before 24.2R2-EVO.

Affected

25 ranges
VendorProductVersion rangeFixed in
juniperjunos< 21.221.2
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos
juniperjunos_os
juniperjunos_os_evolved< 22.422.4
juniperjunos_os_evolved
juniperjunos_os_evolved
juniperjunos_os_evolved
juniperjunos_os_evolved
juniper_networksjunos_os< 21.2R3-S921.2R3-S9
juniper_networksjunos_os>= 21.4 < 21.4R3-S1021.4R3-S10
juniper_networksjunos_os>= 22.2 < 22.2R3-S622.2R3-S6
juniper_networksjunos_os>= 22.4 < 22.4R3-S622.4R3-S6
juniper_networksjunos_os>= 23.2 < 23.2R2-S323.2R2-S3
juniper_networksjunos_os>= 23.4 < 23.4R2-S423.4R2-S4
juniper_networksjunos_os>= 24.2 < 24.2R1-S2, 24.2R224.2R1-S2, 24.2R2
juniper_networksjunos_os_evolved< 22.4R3-S7-EVO22.4R3-S7-EVO
juniper_networksjunos_os_evolved>= 23.2-EVO < 23.2R2-S3-EVO23.2R2-S3-EVO
juniper_networksjunos_os_evolved>= 23.4-EVO < 23.4R2-S4-EVO23.4R2-S4-EVO
juniper_networksjunos_os_evolved>= 24.2-EVO < 24.2R2-EVO24.2R2-EVO