CVE-2025-52989

CWE-1404 documents4 sources

Severity

6.8MEDIUM

EPSS

0.0%

top 92.90%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Juniper Networks Junos OS Evolved Juniper Junos +1 more

Timeline

PublishedJul 11

Description

An Improper Neutralization of Delimiters vulnerability in the UI of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attacker with high privileges to modify the system configuration. A user with limited configuration and commit permissions, using a specifically crafted annotate configuration command, can change any part of the device configuration. This issue affects: Junos OS: * all versions before 22.2R3-S7, * 22.4 versions before 22.4R3-S7, * 23.2 versions b…

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:H/VA:L/SC:N/SI:N/SA:N

Affected Packages4 packages

▶CVEListV5juniper_networks/junos_os_evolved23.2-EVO — 23.2R2-S4-EVO+4

▶NVDjuniper/junos_os_evolved< 22.4+5

▶CVEListV5juniper_networks/junos_os22.4 — 22.4R3-S7+5

▶NVDjuniper/junos< 22.2+6

🔴Vulnerability Details

CVEList

Junos OS and Junos OS Evolved: Annotate configuration command can be used to change the configuration↗2025-07-11

▶

GHSA

GHSA-23x4-8x8q-6443: An Improper Neutralization of Delimiters vulnerability in the UI of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attac↗2025-07-11

▶

📋Vendor Advisories

Juniper

CVE-2025-52989: An Improper Neutralization of Delimiters vulnerability in the UI of Juniper Networks Junos OS and Junos OS Evolved allows a local, authenticated attac↗2025-07-11

▶