CVE-2026-33783

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS Evolved on PTX Series versions prior to 22.4R3-S9-EVO Juniper Networks Junos OS Evolved on PTX Series versions prior to 23.2R2-S6-EVO Juniper Networks Junos OS Evolved on PTX Series versions prior to 23.4R2-S7-EVO Juniper Networks Junos OS Evolved on PTX Series versions prior to 24.2R2-S4-EVO Juniper Networks Junos OS Evolved on PTX Series versions prior to 24.4R2-S2-EVO Juniper Networks Junos OS Evolved on PTX Series versions prior to 25.2R1-S2-EVO, 25.2R2-EVO

Description A Function Call With Incorrect Argument Type vulnerability exists in the sensor interface. A network-based, authenticated attacker with low privileges can cause a Denial of Service (DoS). This occurs when colored SRTE policy tunnels are provisioned via PCEP and gRPC is used to monitor traffic in these tunnels, causing evo-aftmand to crash. The issue is triggered when the Originator ASN field in PCEP contains a value larger than 65,535. The issue is not reproducible with statically configured SRTE policy tunnels.

Recommendations Update to Junos OS Evolved version 22.4R3-S9-EVO or later. Update to Junos OS Evolved version 23.2R2-S6-EVO or later. Update to Junos OS Evolved version 23.4R2-S7-EVO or later. Update to Junos OS Evolved version 24.2R2-S4-EVO or later. Update to Junos OS Evolved version 24.4R2-S2-EVO or later. Update to Junos OS Evolved version 25.2R1-S2-EVO or 25.2R2-EVO or later.