CVE-2025-21591

Name of the Vulnerable Software and Affected Versions: Junos OS versions 23.1R1 through 23.2R2-S3 Junos OS versions 23.4 through 23.4R2-S3 Junos OS versions 24.2 through 24.2R2

Description: A Buffer Access with Incorrect Length Value vulnerability in the jdhcpd daemon of Juniper Networks Junos OS, when DHCP snooping is enabled, allows an unauthenticated, adjacent, attacker to send a DHCP packet with a malformed DHCP option to cause jdhcp to crash creating a Denial of Service (DoS) condition. Continuous receipt of these DHCP packets using the malformed DHCP Option will create a sustained Denial of Service (DoS) condition. There are no indicators of compromise for this issue.

Recommendations: For versions 23.1R1 through 23.2R2-S3, update to version 23.2R2-S3 or later. For versions 23.4 through 23.4R2-S3, update to version 23.4R2-S3 or later. For versions 24.2 through 24.2R2, update to version 24.2R2 or later. As a temporary workaround, consider disabling DHCP snooping until a patch is available. Restrict access to the jdhcpd daemon to minimize the risk of exploitation. Avoid using malformed DHCP options in the affected API endpoint until the issue is resolved.