CVE-2025-59957

CWE-3464 documents4 sources
Severity
7.0HIGH
EPSS
0.0%
top 98.71%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OSJuniper Junos
Timeline
PublishedOct 9

Description

An Origin Validation Error vulnerability in an insufficient protected file of Juniper Networks Junos OS on EX4600 Series and QFX5000 Series allows an unauthenticated attacker with physical access to the device to create a backdoor which allows complete control of the system. When a device isn't configured with a root password, an attacker can modify a specific file. It's contents will be added to the Junos configuration of the device without being visible. This allows for the addition of any co

CVSS vector

CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Affected Packages2 packages

CVEListV5juniper_networks/junos_os22.222.2R3-S3+1
NVDjuniper/junos< 21.4+2

🔴Vulnerability Details

2
CVEList
Junos OS: EX4600 Series and QFX5000 Series: An attacker with physical access can open a persistent backdoor2025-10-09
GHSA
GHSA-f6j3-wrc2-m228: An Origin Validation Error vulnerability in an insufficient protected file of Juniper Networks Junos OS on EX4600 Series and QFX5000 Series allows an2025-10-09

📋Vendor Advisories

1
Juniper
CVE-2025-59957: An Origin Validation Error vulnerability in an insufficient protected file of Juniper Networks Junos OS on EX4600 Series and QFX5000 Series allows an2025-10-09
CVE-2025-59957 (HIGH CVSS 7) | An Origin Validation Error vulnerab | cvebase.io