PT-2026-31742 · Juniper Networks · Evo-Pfemand+4
Published
2026-04-09
·
Updated
2026-04-10
·
CVE-2025-59969
CVSS v3.1
6.5
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Juniper Networks Junos OS Evolved on PTX Series versions prior to 22.4R3-S8-EVO, from 23.2 before 23.2R2-S5-EVO, from 23.4 before 23.4R2-EVO, from 24.2 before 24.2R2-EVO, and from 24.4 before 24.4R2-EVO.
Juniper Networks Junos OS Evolved on QFX5000 Series versions 22.2-EVO before 22.2R3-S7-EVO, 22.4-EVO before 22.4R3-S7-EVO, 23.2-EVO before 23.2R2-S4-EVO, 23.4-EVO before 23.4R2-S5-EVO, 24.2-EVO before 24.2R2-S1-EVO, and 24.4-EVO before 24.4R1-S3-EVO, 24.4R2-EVO.
Description
A buffer copy issue without proper input size validation exists in the advanced forwarding toolkit (evo-aftmand/evo-pfemand) of Juniper Networks Junos OS Evolved. An unauthenticated, adjacent attacker can exploit this by sending crafted multicast packets, leading to a Denial of Service (DoS) condition. Specifically, the crafted packets can cause line cards or non-line card devices running evo-aftmand/evo-pfemand to crash and restart, sustaining the DoS.
Recommendations
Update Junos OS Evolved on PTX Series to version 22.4R3-S8-EVO or later.
Update Junos OS Evolved on PTX Series from 23.2 to version 23.2R2-S5-EVO or later.
Update Junos OS Evolved on PTX Series from 23.4 to version 23.4R2-EVO or later.
Update Junos OS Evolved on PTX Series from 24.2 to version 24.2R2-EVO or later.
Update Junos OS Evolved on PTX Series from 24.4 to version 24.4R2-EVO or later.
Update Junos OS Evolved on QFX5000 Series to version 22.2R3-S7-EVO or later.
Update Junos OS Evolved on QFX5000 Series to version 22.4R3-S7-EVO or later.
Update Junos OS Evolved on QFX5000 Series from 23.2 to version 23.2R2-S4-EVO or later.
Update Junos OS Evolved on QFX5000 Series from 23.4 to version 23.4R2-S5-EVO or later.
Update Junos OS Evolved on QFX5000 Series from 24.2 to version 24.2R2-S1-EVO or later.
Update Junos OS Evolved on QFX5000 Series from 24.4 to version 24.4R1-S3-EVO or 24.4R2-EVO or later.
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos Evolved
Ptx Series
Qfx5000 Series
Evo-Aftmand
Evo-Pfemand