CVE-2025-13914P2HIGHCVSS 8.7fixed in 6.1.12026-04-09
CVE-2025-13914 [HIGH] CWE-322 CVE-2025-13914: A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Netw
A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstra allows a unauthenticated, MITM
attacker to impersonate managed devices.
Due to insufficient SSH host key validation an attacker can perform a machine-in-the-middle attack on the SSH connections from Apstra to managed devices, enabling an a
nvd