CVE-2025-59958

CWE-7544 documents4 sources

Severity

6.9MEDIUM

EPSS

0.1%

top 82.46%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Evolved Juniper Junos OS Evolved

Timeline

PublishedOct 9

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on PTX Series allows an unauthenticated, network-based attacker to cause impact to confidentiality and availability. When an output firewall filter is configured with one or more terms where the action is 'reject', packets matching these terms are erroneously sent to the Routing Engine (RE) and further processed there. Processing of these packets will …

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N

Affected Packages2 packages

▶CVEListV5juniper_networks/junos_os_evolved23.2 — 23.2R2-EVO+1

▶NVDjuniper/junos_os_evolved< 22.4+2

🔴Vulnerability Details

CVEList

Junos OS Evolved: PTX Series: When a firewall filter rejects traffic these packets are erroneously sent to the RE↗2025-10-09

▶

GHSA

GHSA-v4g8-gwfh-3cj3: An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on PT↗2025-10-09

▶

📋Vendor Advisories

Juniper

CVE-2025-59958: An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS Evolved on PT↗2025-10-09

▶