CVE-2025-52981

EPSS 0.06%
Veröffentlicht 11.07.2025 15:08:33
Zuletzt bearbeitet 15.07.2025 13:14:49
Quelle sirt@juniper.net
Teams Watchlist Login
Unerledigt Login

An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on 








SRX1600, SRX2300, SRX 4000 Series, and SRX5000 Series with SPC3



allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS).

If a sequence of specific PIM packets is received, this will cause a flowd crash and restart.


This issue affects Junos OS:



  *  all versions before 21.2R3-S9,
  *  21.4 versions before 21.4R3-S11,
  *  22.2 versions before 22.2R3-S7,
  *  22.4 versions before 22.4R3-S6,
  *  23.2 versions before 23.2R2-S4,
  *  23.4 versions before 23.4R2-S4,
  *  24.2 versions before 24.2R2.







This is a similar, but different vulnerability than the issue reported as

CVE-2024-47503, published in JSA88133.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Verknüpft mit AI von unstrukturierten Daten zu bestehenden CPE der NVD

Diese Information steht angemeldeten Benutzern zur Verfügung.

Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).

HerstellerJuniper Networks

≫

Produkt Junos OS

Default Statusunaffected

Version < 21.2R3-S9

Version 0

Status affected

Version < 21.4R3-S11

Version 21.4

Status affected

Version < 22.2R3-S7

Version 22.2

Status affected

Version < 22.4R3-S6

Version 22.4

Status affected

Version < 23.2R2-S4

Version 23.2

Status affected

Version < 23.4R2-S4

Version 23.4

Status affected

Version < 24.2R2

Version 24.2

Status affected

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.189

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
sirt@juniper.net	7.5	3.9	3.6	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
sirt@juniper.net	8.7	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:X/RE:M/U:X

CWE-754 Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

https://supportportal.juniper.net/JSA100087

https://nvd.nist.gov/vuln/detail/CVE-2025-52981

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2025-52981

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2025-52981

EUVD