CVE-2025-60007

CWE-476NULL Pointer Dereference4 documents4 sources
Severity
6.8MEDIUM
EPSS
0.0%
top 99.68%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OSJuniper Junos
Timeline
PublishedJan 15

Description

A NULL Pointer Dereference vulnerability in the chassis daemon (chassisd) of Juniper Networks Junos OS on MX, SRX and EX Series allows a local attacker with low privileges to cause a Denial-of-Service (DoS). When a user executes the 'show chassis' command with specifically crafted options, chassisd will crash and restart. Due to this all components but the Routing Engine (RE) in the chassis are reinitialized, which leads to a complete service outage, which the system automatically recovers fro

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L

Affected Packages2 packages

CVEListV5juniper_networks/junos_os23.223.2R2-S5+4
NVDjuniper/junos< 22.4+5

🔴Vulnerability Details

2
GHSA
GHSA-xfq5-fxgc-9grj: A NULL Pointer Dereference vulnerability in the chassis daemon (chassisd) of Juniper Networks Junos OS on MX, SRX and EX Series allows a local attacke2026-01-15
CVEList
Junos OS: A specifically crafted 'show chassis' command causes chassisd to crash2026-01-15

📋Vendor Advisories

1
Juniper
CVE-2025-60007: A NULL Pointer Dereference vulnerability in the chassis daemon (chassisd) of Juniper Networks Junos OS on MX, SRX and EX Series allows a local attacke2026-01-15
CVE-2025-60007 (MEDIUM CVSS 6.8) | A NULL Pointer Dereference vulnerab | cvebase.io