CVE-2025-21600

Name of the Vulnerable Software and Affected Versions Junos OS versions 21.4 through 24.2R1-S2, 24.2R2 Junos OS Evolved versions 21.4-EVO through 24.2-EVO

Description The issue is related to an Out-of-Bounds Read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. This vulnerability allows an unauthenticated, logically adjacent BGP peer to cause rpd to crash and restart by sending a specifically malformed BGP packet, resulting in a Denial of Service (DoS). The issue affects systems configured with BGP traceoptions enabled or BGP family traffic-engineering (BGP-LS) configured and can be exploited from a directly connected and configured BGP peer. Both IPv4 and IPv6 are affected by this vulnerability.

Recommendations For Junos OS versions 21.4 through 24.2R1-S2, 24.2R2, update to version 21.4R3-S9 or later, 22.2R3-S5 or later, 22.3R3-S4 or later, 22.4R3-S5 or later, 23.2R2-S3 or later, 23.4R2-S3 or later, or 24.2R1-S2 or later. For Junos OS Evolved versions 21.4-EVO through 24.2-EVO, update to version 21.4R3-S9-EVO or later, 22.2R3-S5-EVO or later, 22.3R3-S4-EVO or later, 22.4R3-S5-EVO or later, 23.2R2-S3-EVO or later, 23.4R2-S2-EVO or later, or 24.2R1-S2-EVO or later. As a temporary workaround, consider disabling BGP traceoptions and BGP family traffic-engineering (BGP-LS) until a patch is available. Restrict access to the vulnerable module rpd to minimize the risk of exploitation. Avoid using the BGP protocol in the affected API endpoint until the issue is resolved.