Juniper Networks Junos OS
Moderate fix6 remedies
cpe:2.3:h:juniper:junos:*:*:*:*:*:*:*, +3 more
Moderate fix6 remedies
- < 21.4R3-S6
- >= 22.1, < 22.1R3-S6
- >= 22.2, < 22.2R3-S3
- >= 22.3, < 22.3R3-S3
- >= 22.4, < 22.4R3
- >= 23.2, < 23.2R2
Juniper Networks Junos OS and Junos OS Evolved BGP Sharding Denial-of-Service Vulnerability
Vulnerability
Patched
A vulnerability allowing access to uninitialized pointers has been identified in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. This vulnerability occurs in versions with BGP sharding configured, where an attacker can trigger indirect next-hop updates. The issue causes rpd to crash and restart, leading to a denial-of-service condition. With BGP sharding enabled, manipulating IGP route changes that BGP routes depend on can cause rpd to fail and restart. Continuously disrupting IGP routes increases the chances of causing this crash, potentially prolonging the denial-of-service effect.
Impact
Exploiting this vulnerability causes the routing protocol daemon (rpd) to crash and restart, disrupting routing processes and causing a denial-of-service condition.
Added: Oct 9, 2025, 4:27 PM
Updated: Oct 9, 2025, 4:27 PM
Vulnerability Rating
Custom Algorithm
spread
6.8impact
2.5exploitability
5.9remediation
7.7relevance
0.6threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.