CVE-2025-52949

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS versions prior to 21.4R3-S11 Juniper Networks Junos OS versions 22.2 through 22.2R3-S7 Juniper Networks Junos OS versions 22.4 through 22.4R3-S7 Juniper Networks Junos OS versions 23.2 through 23.2R2-S4 Juniper Networks Junos OS versions 23.4 through 23.4R2-S5 Juniper Networks Junos OS versions 24.2 through 24.2R2-S1 Juniper Networks Junos OS versions 24.4 through 24.4R1-S3, 24.4R2 Juniper Networks Junos OS Evolved versions prior to 22.2R3-S7-EVO Juniper Networks Junos OS Evolved versions 22.4-EVO through 22.4R3-S7-EVO Juniper Networks Junos OS Evolved versions 23.2-EVO through 23.2R2-S4-EVO Juniper Networks Junos OS Evolved versions 23.4-EVO through 23.4R2-S5-EVO Juniper Networks Junos OS Evolved versions 24.2-EVO through 24.2R2-S1-EVO Juniper Networks Junos OS Evolved versions 24.4-EVO through 24.4R1-S3-EVO, 24.4R2-EVO

Description: An Improper Handling of Length Parameter Inconsistency vulnerability exists in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. A logically adjacent BGP peer sending a specifically malformed BGP packet can cause rpd to crash and restart, resulting in a Denial of Service (DoS). Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. This issue affects systems configured for Ethernet Virtual Private Networking (EVPN) signaling, and impacts both iBGP and eBGP, as well as both IPv4 and IPv6.

Recommendations: Update to Junos OS version 21.4R3-S11 or later. Update to Junos OS version 22.2R3-S7 or later. Update to Junos OS version 22.4R3-S7 or later. Update to Junos OS version 23.2R2-S4 or later. Update to Junos OS version 23.4R2-S5 or later. Update to Junos OS version 24.2R2-S1 or later. Update to Junos OS version 24.4R1-S3 or 24.4R2 or later. Update to Junos OS Evolved version 22.2R3-S7-EVO or later. Update to Junos OS Evolved version 22.4R3-S7-EVO or later. Update to Junos OS Evolved version 23.2R2-S4-EVO or later. Update to Junos OS Evolved version 23.4R2-S5-EVO or later. Update to Junos OS Evolved version 24.2R2-S1-EVO or later. Update to Junos OS Evolved version 24.4R1-S3-EVO or 24.4R2-EVO or later.