Volerion logoVolerion
Volerion logoVolerion

Juniper Networks Junos OS SRX Series Packet Forwarding Engine Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX Series devices. This vulnerability allows an unauthenticated, network-based attacker to cause the PFE to crash and restart. The issue arises when a device configured for Secure Vector Routing (SVR) receives a specifically malformed packet. This vulnerability affects all 21.4 versions, 22.2 versions prior to 22.2R3-S6, 22.4 versions prior to 22.4R3-S6, 23.2 versions prior to 23.2R2-S3, 23.4 versions prior to 23.4R2-S4, and 24.2 versions prior to 24.2R2. Versions before 21.4 are not affected.

Impact

Exploitation of this vulnerability leads to a crash of the Packet Forwarding Engine, causing a denial-of-service condition on the affected device.

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
6.8
impact
2.5
exploitability
7.0
remediation
7.7
relevance
0.0
threat
0.0
urgency
2.9
incentive
5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.