PT-2026-31796 · Juniper Networks · Apstra

Published

2026-04-09

·

Updated

2026-07-08

·

CVE-2025-13914

CVSS v3.1

8.7

High

VectorAV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N
Name of the Vulnerable Software and Affected Versions Juniper Networks Apstra versions prior to 6.1.1
Description A Key Exchange without Entity Authentication issue exists in the SSH implementation of Juniper Networks Apstra. This allows an unauthenticated, man-in-the-middle (MITM) attacker to impersonate managed devices. Insufficient SSH host key validation enables an attacker to perform a MITM attack on SSH connections from Apstra to managed devices, potentially capturing user credentials.
Recommendations Update to version 6.1.1 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

Weakness Enumeration

Related Identifiers

CVE-2025-13914

Affected Products

Apstra