Juniper Networks Junos OS SRX Series Flow Daemon NULL Pointer Dereference Vulnerability Leading to Denial-of-Service

Vulnerability

A NULL pointer dereference vulnerability has been identified in the flow daemon (flowd) of Juniper Networks Junos OS on SRX Series. This vulnerability allows an attacker to send specific valid control traffic out of a Dual-Stack (DS) Lite tunnel, causing the flowd process to crash and resulting in a denial-of-service condition. The flowd process failure leads to a network outage that persists until the process is restarted. Continuous transmission of the specific control traffic can create a sustained denial-of-service condition.

Impact

Exploitation of this vulnerability causes a segmentation fault in the flowd process, leading to a network outage until the process is restarted. This disruption can be sustained through continuous triggering of the specific control traffic.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

5.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

5.9

remediation

7.7

relevance

0.0

threat

0.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Juniper Networks Junos OS SRX Series Flow Daemon NULL Pointer Dereference Vulnerability Leading to Denial-of-Service

Vulnerability

Impact

Affected Products

Juniper Networks Junos OS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating