CVE-2025-60004

CWE-7544 documents4 sources
Severity
8.7HIGH
EPSS
0.1%
top 79.75%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Juniper Networks Junos OSJuniper Networks Junos OS EvolvedJuniper Junos+1 more
Timeline
PublishedOct 9

Description

An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial-Of-Service (DoS). When an affected system receives a specific BGP EVPN update message over an established BGP session, this causes an rpd crash and restart. A BGP EVPN configuration is not necessary to be vulnerable. If peers are not configured to send BGP EVPN updates to

CVSS vector

CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Affected Packages4 packages

CVEListV5juniper_networks/junos_os_evolved23.4R2-S2-EVO23.4R2-S5-EVO+2
CVEListV5juniper_networks/junos_os23.4R2-S323.4R2-S5+2
NVDjuniper/junos_os_evolved23.4, 24.2, 24.4+2
NVDjuniper/junos23.4, 24.2, 24.4+2

🔴Vulnerability Details

2
GHSA
GHSA-4gp9-mf5j-g6fq: An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS E2025-10-09
CVEList
Junos OS and Junos OS Evolved: Specific BGP EVPN update message causes rpd crash2025-10-09

📋Vendor Advisories

1
Juniper
CVE-2025-60004: An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS E2025-10-09
CVE-2025-60004 (HIGH CVSS 8.7) | An Improper Check for Unusual or Ex | cvebase.io