8.7

CVE-2026-33782

Junos OS: MX Series: In specific DHCPv6 scenarios jdhcpd memory increases continuously with subscriber logouts

A Missing Release of Memory after Effective Lifetime vulnerability in the DHCP daemon (jdhcpd) of Juniper Networks Junos OS on MX Series, allows an adjacent, unauthenticated attacker to cause a memory leak, that will eventually cause a complete Denial-of-Service (DoS).

In a DHCPv6 over PPPoE, or DHCPv6 over VLAN with Active lease query or Bulk lease query scenario, every subscriber logout will leak a small amount of memory. When all available memory has been exhausted, jdhcpd will crash and restart which causes a complete service impact until the process has recovered.

The memory usage of jdhcpd can be monitored with:

user@host> show system processes extensive | match jdhcpd



This issue affects Junos OS:

  *  all versions before 22.4R3-S1,
  *  23.2 versions before 23.2R2,
  *  23.4 versions before 23.4R2.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
JuniperJunos Version < 22.4
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version22.4 Update-
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version22.4 Updater1
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version22.4 Updater1-s1
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version22.4 Updater1-s2
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version22.4 Updater2
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version22.4 Updater2-s1
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version22.4 Updater2-s2
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version22.4 Updater3
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version23.2 Update-
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version23.2 Updater1
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version23.2 Updater1-s1
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version23.2 Updater1-s2
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version23.4 Update-
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version23.4 Updater1
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version23.4 Updater1-s1
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
JuniperJunos Version23.4 Updater1-s2
   JuniperMx10004 Version-
   JuniperMx10008 Version-
   JuniperMx2008 Version-
   JuniperMx2010 Version-
   JuniperMx2020 Version-
   JuniperMx204 Version-
   JuniperMx240 Version-
   JuniperMx301 Version-
   JuniperMx304 Version-
   JuniperMx480 Version-
   JuniperMx960 Version-
VulnDex Vulnerability Enrichment
Diese Information steht angemeldeten Benutzern zur Verfügung. Login Login
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.29% 0.202
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
sirt@juniper.net 6.5 2.8 3.6
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
sirt@juniper.net 8.7 0 0
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:X/V:X/RE:M/U:X
CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.