CVE-2025-59960

CWE-7544 documents4 sources

Severity

6.3MEDIUM

EPSS

0.0%

top 98.96%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Juniper Networks Junos OS Juniper Networks Junos OS Evolved Juniper Junos +1 more

Timeline

PublishedJan 15

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Juniper DHCP service (jdhcpd) of Juniper Networks Junos OS and Junos OS Evolved allows a DHCP client in one subnet to exhaust the address pools of other subnets, leading to a Denial of Service (DoS) on the downstream DHCP server. By default, the DHCP relay agent inserts its own Option 82 information when forwarding client requests, optionally replacing any Option 82 information provided by the client. When a specific …

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:L/SI:N/SA:H

Affected Packages4 packages

▶CVEListV5juniper_networks/junos_os_evolved22.2 — 22.2*+7

▶NVDjuniper/junos_os_evolved< 21.4+8

▶CVEListV5juniper_networks/junos_os21.4 — 21.4R3-S12+8

▶NVDjuniper/junos< 21.2+9

🔴Vulnerability Details

CVEList

Junos OS and Junos OS Evolved: DHCP Option 82 messages from clients being passed unmodified to the DHCP server↗2026-01-15

▶

GHSA

GHSA-3225-h3v6-7qv5: An Improper Check for Unusual or Exceptional Conditions vulnerability in the Juniper DHCP service (jdhcpd) of Juniper Networks Junos OS and Junos OS E↗2026-01-15

▶

📋Vendor Advisories

Juniper

CVE-2025-59960: An Improper Check for Unusual or Exceptional Conditions vulnerability in the Juniper DHCP service (jdhcpd) of Juniper Networks Junos OS and Junos OS E↗2026-01-15

▶