CVE-2026-33781

EPSS 0.03%
Veröffentlicht 09.04.2026 22:16:27
Zuletzt bearbeitet 17.04.2026 17:53:32
Quelle sirt@juniper.net
CVE-Watchlists
Login
Unerledigt
Login

Junos OS: EX Series, QFX Series: In a VXLAN scenario when specific control protocol packets are received, memory leaks and eventually no traffic is passed

An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (pfe) of Juniper Networks Junos OS on specific EX and QFX Series devices allow an unauthenticated, adjacent attacker to cause a complete Denial of Service (DoS).

On EX4k, and QFX5k platforms configured as service-provider edge devices, if L2PT is enabled on the UNI and VSTP is enabled on NNI in VXLAN scenarios, receiving VSTP BPDUs on UNI leads to packet buffer allocation failures, resulting in the device to not pass traffic anymore until it is manually recovered with a restart.This issue affects Junos OS:



  *  24.4 releases before 24.4R2,
  *  25.2 releases before 25.2R1-S1, 25.2R2.




This issue does not affect Junos OS releases before 24.4R1.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 7 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Juniper ≫ Junos Version24.4 Update-

   Juniper ≫ Ex4000 Version-
   Juniper ≫ Ex4100 Version-
   Juniper ≫ Ex4100-f Version-
   Juniper ≫ Ex4100-h Version-
   Juniper ≫ Ex4300 Version-
   Juniper ≫ Ex4400 Version-
   Juniper ≫ Ex4600 Version-
   Juniper ≫ Ex4650 Version-
   Juniper ≫ Qfx5110 Version-
   Juniper ≫ Qfx5120 Version-
   Juniper ≫ Qfx5130 Version-
   Juniper ≫ Qfx5200 Version-
   Juniper ≫ Qfx5210 Version-
   Juniper ≫ Qfx5220 Version-
   Juniper ≫ Qfx5230-64cd Version-
   Juniper ≫ Qfx5240 Version-
   Juniper ≫ Qfx5241 Version-
   Juniper ≫ Qfx5700 Version-

Juniper ≫ Junos Version24.4 Updater1

Juniper ≫ Junos Version24.4 Updater1-s2

Juniper ≫ Junos Version24.4 Updater1-s3

Juniper ≫ Junos Version25.2 Update-

Juniper ≫ Junos Version25.2 Updater1

Juniper ≫ Junos Version25.2 Updater2

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.03%	0.088

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
sirt@juniper.net	6.5	2.8	3.6	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
sirt@juniper.net	7.1	0	0	CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:X/RE:M/U:X

CWE-754 Improper Check for Unusual or Exceptional Conditions

The product does not check or incorrectly checks for unusual or exceptional conditions that are not expected to occur frequently during day to day operation of the product.

https://kb.juniper.net/JSA107869

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2026-33781

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-33781

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-33781

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-33781