CVE-2025-21593

Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 21.2R3-S9 Junos OS versions from 21.4 before 21.4R3-S10 Junos OS versions from 22.2 before 22.2R3-S5 Junos OS versions from 22.3 before 22.3R3-S4 Junos OS versions from 22.4 before 22.4R3-S3 Junos OS versions from 23.2 before 23.2R2-S2 Junos OS versions from 23.4 before 23.4R2 Junos OS Evolved versions prior to 21.2R3-S9-EVO Junos OS Evolved versions from 21.4-EVO before 21.4R3-S10-EVO Junos OS Evolved versions from 22.2-EVO before 22.2R3-S5-EVO Junos OS Evolved versions from 22.3-EVO before 22.3R3-S4-EVO Junos OS Evolved versions from 22.4-EVO before 22.4R3-S3-EVO Junos OS Evolved versions from 23.2-EVO before 23.2R2-S2-EVO Junos OS Evolved versions from 23.4-EVO before 23.4R2-EVO

Description An Improper Control of a Resource Through its Lifetime vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated network-based attacker to cause a Denial-of-Service (DoS). On devices with SRv6 (Segment Routing over IPv6) enabled, an attacker can send a malformed BGP UPDATE packet which will cause the rpd to crash and restart. Continued receipt of these UPDATE packets will cause a sustained DoS condition. This issue affects iBGP and eBGP, and both IPv4 and IPv6 are affected by this vulnerability.

Recommendations Update to a version of Junos OS or Junos OS Evolved that is not affected by this vulnerability. As a temporary workaround, consider disabling SRv6 on devices until a patch is available. Restrict access to the BGP protocol to minimize the risk of exploitation. Avoid using the BGP UPDATE packet in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.