PT-2026-31808 · Juniper Networks · Junos+1
Published
2026-04-09
·
Updated
2026-04-09
·
CVE-2026-33797
CVSS v3.1
7.4
High
| Vector | AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions
Juniper Networks Junos OS versions prior to 25.2R2
Juniper Networks Junos OS Evolved versions prior to 25.2R2-EVO
Description
An improper input validation issue exists in Juniper Networks Junos OS and Junos OS Evolved. An unauthenticated, adjacent attacker can send a specific BGP packet within an established BGP session to cause a Denial of Service (DoS). Repeatedly sending the packet sustains the DoS. Both eBGP and iBGP are affected, as are IPv4 and IPv6.
Recommendations
Update Junos OS to version 25.2R2 or later.
Update Junos OS Evolved to version 25.2R2-EVO or later.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos
Junos Evolved