PT-2026-31748 · Juniper Networks · Mx Series+2
Published
2026-04-09
·
Updated
2026-04-09
·
CVE-2026-33775
CVSS v3.1
6.5
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Juniper Networks Junos OS on MX Series versions prior to 22.4R3-S8
Juniper Networks Junos OS on MX Series versions prior to 23.2R2-S5
Juniper Networks Junos OS on MX Series versions prior to 23.4R2-S6
Juniper Networks Junos OS on MX Series versions prior to 24.2R2-S2
Juniper Networks Junos OS on MX Series versions prior to 24.4R2
Juniper Networks Junos OS on MX Series versions prior to 25.2R2
Description
A Missing Release of Memory after Effective Lifetime issue exists in the BroadBand Edge subscriber management daemon (
bbe-smgd) of Juniper Networks Junos OS on MX Series. An adjacent, unauthenticated attacker can cause a Denial of Service (DoS) if the authentication packet-type option is configured and a received packet does not match that packet type, leading to a memory leak. When all memory available to bbe-smgd is consumed, new subscribers will be unable to log in. The memory utilization of bbe-smgd can be monitored using the command show system processes extensive | match bbe-smgd. The log message bbesmgd[<PID>]: %DAEMON-3-SMD DPROF RSMON ERROR: Resource unavailability, Reason: Daemon Heap Memory exhaustion can be observed when the memory limit is reached.Recommendations
Versions prior to 22.4R3-S8 should be upgraded.
Versions prior to 23.2R2-S5 should be upgraded.
Versions prior to 23.4R2-S6 should be upgraded.
Versions prior to 24.2R2-S2 should be upgraded.
Versions prior to 24.4R2 should be upgraded.
Versions prior to 25.2R2 should be upgraded.
Fix
Memory Leak
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos
Mx Series
Bbe-Smgd