Juniper Networks Junos OS SRX4700 Packet Forwarding Engine Denial-of-Service Vulnerability

Vulnerability

A use of uninitialized resource vulnerability has been identified in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX4700 devices. This vulnerability allows an unauthenticated, network-based attacker to cause a denial-of-service (DoS) condition. When forwarding-options sampling is enabled, any traffic sent to the Routing Engine (RE) by the PFE line card can trigger a crash and restart of the affected Forwarding Plane Component (FPC), creating a sustained DoS condition. This issue affects both IPv4 and IPv6 traffic.

Impact

Exploitation of this vulnerability leads to a crash and restart of the affected PFE line card, causing a denial-of-service condition.

Added: Oct 9, 2025, 4:26 PM

Updated: Oct 9, 2025, 4:26 PM

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

7.7

remediation

8.3

relevance

0.6

threat

3.2

urgency

1.4

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

6.8

impact

2.5

exploitability

7.7

remediation

8.3

relevance

0.6

threat

3.2

urgency

1.4

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Juniper Networks Junos OS SRX4700 Packet Forwarding Engine Denial-of-Service Vulnerability

Vulnerability

Impact

Affected Products

Juniper Networks Junos OS

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating