Juniper Networks Junos OS
Moderate fix7 remedies
cpe:2.3:a:juniper:junos:*:*:*:*:*:*:*, +2 more
Moderate fix7 remedies
- < 22.4R3-S8
- >= 23.2, < 23.2R2-S5
- >= 23.4, < 23.4R2-S6
- >= 24.2, < 24.2R2
- >= 24.4, < 24.4R2
- >= 25.2, < 25.2R2
Juniper Networks Junos OS MX Series BroadBand Edge Subscriber Management Daemon Denial-of-Service Vulnerability
Vulnerability
Patched
A memory leak vulnerability has been identified in the BroadBand Edge subscriber management daemon (bbe-smgd) of Juniper Networks Junos OS on MX Series. This vulnerability allows an adjacent, unauthenticated attacker to cause a denial-of-service condition. The issue arises when the authentication packet-type option is configured, and a received packet does not match the expected type, leading to a memory leak. Once the daemon's memory is exhausted, new subscribers cannot log in. This vulnerability affects all versions of Junos OS on MX Series prior to 22.4R3-S8, as well as specific versions in the 23.x and 24.x series.
Impact
Exploitation of this vulnerability leads to exhaustion of the bbe-smgd daemon's heap memory, causing a denial-of-service condition where no new subscribers can log in.
Remediation
Users can upgrade to Junos OS versions 22.4R3-S8, 23.2R2-S5, 23.4R2-S6, 24.2R2-S2, 24.4R2, 25.2R2, or 25.4R1. For guidance on which releases vulnerabilities are fixed, refer to Juniper's KB16765.
Added: Apr 10, 2026, 12:51 AM
Updated: Apr 10, 2026, 12:51 AM
Vulnerability Rating
Custom Algorithm
spread
6.8impact
0.6exploitability
4.5remediation
7.7relevance
5.5threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.