CVE-2026-33773

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 23.4R2-S6 through 24.2R2-S3

Description A flaw exists in the packet forwarding engine (pfe) of Juniper Networks Junos OS on specific EX Series and QFX Series devices. An unauthenticated, network-based attacker can cause an integrity impact to downstream networks. This occurs when the same family inet or inet6 filter is applied on an IRB interface and on a physical interface as an egress filter on EX4100, EX4400, EX4650 and QFX5120 devices, resulting in only one of the two filters being applied, potentially allowing unintended traffic to be sent.

Recommendations Update to a version later than 24.2R2-S3.