What is the CVSS score of CVE-2025-52980?

CVE-2025-52980 has a CVSS 3.1 base score of 7.5 (High). CVSS vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H. EPSS exploitation probability: 0.1%.

Which versions of BGP are affected by CVE-2025-52980?

CVE-2025-52980 is a high-severity denial of service vulnerability affecting an unspecified product with a CVSS score of 7.5, enabling attackers to disrupt service availability.. A patch is available.

How to fix or mitigate CVE-2025-52980?

Within 24 hours: Inventory all systems running the affected product and confirm patch availability status with vendor. Within 7 days: Deploy vendor-released patch to production systems in phased approach, beginning with non-critical environments. Within 30 days: Complete patch deployment across all affected assets and validate service stability post-deployment.

BGP CVE-2025-52980

EUVD-2025-21150 HIGH

Use of Incorrect Byte Ordering (CWE-198)

2025-07-11 sirt@juniper.net

Denial Of Service Juniper BGP Junos

7.5

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Lifecycle Timeline

Analysis Updated

Apr 16, 2026 - 06:27 EUVD-patch-fix

executive_summary

Re-analysis Queued

Apr 16, 2026 - 05:29 backfill_euvd_patch

patch_released

Patch available

Apr 16, 2026 - 05:29 EUVD

23.4R2,22.3R3-S3,22.2R3-S4

EUVD ID Assigned

Mar 16, 2026 - 08:18 euvd

EUVD-2025-21150

Analysis Generated

Mar 16, 2026 - 08:18 vuln.today

CVE Published

Jul 11, 2025 - 16:15 nvd

HIGH 7.5

DescriptionNVD

A Use of Incorrect Byte Ordering

vulnerability

in the Routing Protocol Daemon (rpd) of Juniper Networks Junos OS on SRX300 Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS).

When a BGP update is received over an established BGP session which contains a specific, valid, optional, transitive path attribute, rpd will crash and restart.

This issue affects eBGP and iBGP over IPv4 and IPv6.

This issue affects:

Junos OS:

22.1 versions from 22.1R1 before 22.2R3-S4,
22.3 versions before 22.3R3-S3,
22.4 versions before 22.4R3-S2,
23.2 versions before 23.2R2,
23.4 versions before 23.4R2.

AnalysisAI

A denial of service vulnerability (CVSS 7.5). High severity vulnerability requiring prompt remediation.

Technical ContextAI

Vulnerability type: denial of service. CVSS 7.5 indicates high severity.

RemediationAI

Monitor vendor channels for patch availability.

More from same product – last 7 days

CVE-2026-48687 CRITICAL Act Now

9.8 May 26

OS command injection in FastNetMon Community Edition (through 1.2.9) lets attacker-controlled input reach an unescaped e

CVE-2025-52980 vulnerability details – vuln.today

Back

BGP CVE-2025-52980

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

More from same product – last 7 days

Share

External POC / Exploit Code