CVE-2026-21903

EPSS 0.02%
Veröffentlicht 15.01.2026 20:18:36
Zuletzt bearbeitet 23.01.2026 19:40:03
Quelle sirt@juniper.net
CVE-Watchlists
Login
Unerledigt
Login

Junos OS: Subscribing to telemetry sensors at scale causes all FPCs to crash

A Stack-based Buffer Overflow vulnerability in the Packet Forwarding Engine (pfe) of Juniper Networks Junos OS allows a network-based attacker, authenticated with low privileges to cause a Denial-of-Service (DoS).



Subscribing to telemetry sensors at scale causes all FPC connections to drop, resulting in an FPC crash and restart.
The issue was not seen when YANG packages for the specific sensors were installed. 



This issue affects Junos OS: 



  *  all versions before 22.4R3-S7,
  *  23.2 version before 23.2R2-S4,
  *  23.4 versions before 23.4R2.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 5

NVD 27 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Juniper ≫ Junos Version < 22.4

Juniper ≫ Junos Version22.4 Update-

Juniper ≫ Junos Version22.4 Updater1

Juniper ≫ Junos Version22.4 Updater1-s1

Juniper ≫ Junos Version22.4 Updater1-s2

Juniper ≫ Junos Version22.4 Updater2

Juniper ≫ Junos Version22.4 Updater2-s1

Juniper ≫ Junos Version22.4 Updater2-s2

Juniper ≫ Junos Version22.4 Updater3

Juniper ≫ Junos Version22.4 Updater3-s1

Juniper ≫ Junos Version22.4 Updater3-s2

Juniper ≫ Junos Version22.4 Updater3-s3

Juniper ≫ Junos Version22.4 Updater3-s4

Juniper ≫ Junos Version22.4 Updater3-s5

Juniper ≫ Junos Version22.4 Updater3-s6

Juniper ≫ Junos Version23.2 Update-

Juniper ≫ Junos Version23.2 Updater1

Juniper ≫ Junos Version23.2 Updater1-s1

Juniper ≫ Junos Version23.2 Updater1-s2

Juniper ≫ Junos Version23.2 Updater2

Juniper ≫ Junos Version23.2 Updater2-s1

Juniper ≫ Junos Version23.2 Updater2-s2

Juniper ≫ Junos Version23.2 Updater2-s3

Juniper ≫ Junos Version23.4 Update-

Juniper ≫ Junos Version23.4 Updater1

Juniper ≫ Junos Version23.4 Updater1-s1

Juniper ≫ Junos Version23.4 Updater1-s2

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.02%	0.046

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
sirt@juniper.net	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
sirt@juniper.net	7.1	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

CWE-121 Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

https://supportportal.juniper.net/JSA106022

Vendor Advisory

https://kb.juniper.net/JSA106022

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2026-21903

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-21903

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-21903

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-21903