Severity by source
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
6DescriptionCVE.org
A Use of Incorrect Byte Ordering
vulnerability
in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS on SRX300 Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS).
When a BGP update is received over an established BGP session which contains a specific, valid, optional, transitive path attribute, rpd will crash and restart.
This issue affects eBGP and iBGP over IPv4 and IPv6.
This issue affects:
Junos OS:
- 22.1 versions from 22.1R1 before 22.2R3-S4,
- 22.3 versions before 22.3R3-S3,
- 22.4 versions before 22.4R3-S2,
- 23.2 versions before 23.2R2,
- 23.4 versions before 23.4R2.
AnalysisAI
A denial of service vulnerability (CVSS 7.5). High severity vulnerability requiring prompt remediation.
Technical ContextAI
Vulnerability type: denial of service. CVSS 7.5 indicates high severity.
RemediationAI
Monitor vendor channels for patch availability.
Plaintext daemon credentials in IDC SFX2100 routing config files (zebra, bgpd, ospfd, ripd). CVSS 10.0. PoC available.
A denial of service vulnerability (CVSS 7.5) that allows an attacker sending a bgp update with a specifically malformed
Same technique Denial Of Service
View allShare
External POC / Exploit Code
Leaving vuln.today
EUVD-2025-21150