CVE-2026-33783

EPSS 0.06%
Veröffentlicht 09.04.2026 22:16:27
Zuletzt bearbeitet 17.04.2026 18:27:14
Quelle sirt@juniper.net
CVE-Watchlists
Login
Unerledigt
Login

Junos OS Evolved: PTX Series: If SRTE tunnels provisioned via PCEP are present and specific gRPC queries are received evo-aftmand crashes

A Function Call With Incorrect Argument Type vulnerability in the sensor interface of Juniper Networks Junos OS Evolved on PTX Series allows a network-based, authenticated attacker with low privileges to cause a complete Denial of Service (DoS).


If colored SRTE policy tunnels are provisioned via PCEP, and gRPC is used to monitor traffic in these tunnels, evo-aftmand crashes and doesn't restart which leads to a complete and persistent service impact. The system has to be manually restarted to recover. The issue is seen only when the Originator ASN field in PCEP contains a value larger than 65,535 (32-bit ASN). The issue is not reproducible when SRTE policy tunnels are statically configured.


This issue affects Junos OS Evolved on PTX Series: 



  *  all versions before 22.4R3-S9-EVO,
  *  23.2 versions before 23.2R2-S6-EVO,
  *  23.4 versions before 23.4R2-S7-EVO,
  *  24.2 versions before 24.2R2-S4-EVO,
  *  24.4 versions before 24.4R2-S2-EVO,
  *  25.2 versions before 25.2R1-S2-EVO, 25.2R2-EVO.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

NVD 54 VulnDex Vulnerability Enrichment 1

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Juniper ≫ Junos Os Evolved Version < 22.4

   Juniper ≫ Ptx10001-36mr Version-
   Juniper ≫ Ptx10002-36qdd Version-
   Juniper ≫ Ptx10003 Version-
   Juniper ≫ Ptx10004 Version-
   Juniper ≫ Ptx10008 Version-
   Juniper ≫ Ptx10016 Version-
   Juniper ≫ Ptx12008 Version-

Juniper ≫ Junos Os Evolved Version22.4 Update-

Juniper ≫ Junos Os Evolved Version22.4 Updater1

Juniper ≫ Junos Os Evolved Version22.4 Updater1-s1

Juniper ≫ Junos Os Evolved Version22.4 Updater1-s2

Juniper ≫ Junos Os Evolved Version22.4 Updater2

Juniper ≫ Junos Os Evolved Version22.4 Updater2-s1

Juniper ≫ Junos Os Evolved Version22.4 Updater2-s2

Juniper ≫ Junos Os Evolved Version22.4 Updater3

Juniper ≫ Junos Os Evolved Version22.4 Updater3-s1

Juniper ≫ Junos Os Evolved Version22.4 Updater3-s2

Juniper ≫ Junos Os Evolved Version22.4 Updater3-s3

Juniper ≫ Junos Os Evolved Version22.4 Updater3-s4

Juniper ≫ Junos Os Evolved Version22.4 Updater3-s5

Juniper ≫ Junos Os Evolved Version22.4 Updater3-s6

Juniper ≫ Junos Os Evolved Version22.4 Updater3-s7

Juniper ≫ Junos Os Evolved Version23.2 Update-

Juniper ≫ Junos Os Evolved Version23.2 Updater1

Juniper ≫ Junos Os Evolved Version23.2 Updater1-s1

Juniper ≫ Junos Os Evolved Version23.2 Updater1-s2

Juniper ≫ Junos Os Evolved Version23.2 Updater2

Juniper ≫ Junos Os Evolved Version23.2 Updater2-s1

Juniper ≫ Junos Os Evolved Version23.2 Updater2-s2

Juniper ≫ Junos Os Evolved Version23.2 Updater2-s3

Juniper ≫ Junos Os Evolved Version23.2 Updater2-s4

Juniper ≫ Junos Os Evolved Version23.2 Updater2-s5

Juniper ≫ Junos Os Evolved Version23.4 Update-

Juniper ≫ Junos Os Evolved Version23.4 Updater1

Juniper ≫ Junos Os Evolved Version23.4 Updater1-s1

Juniper ≫ Junos Os Evolved Version23.4 Updater1-s2

Juniper ≫ Junos Os Evolved Version23.4 Updater2

Juniper ≫ Junos Os Evolved Version23.4 Updater2-s1

Juniper ≫ Junos Os Evolved Version23.4 Updater2-s2

Juniper ≫ Junos Os Evolved Version23.4 Updater2-s3

Juniper ≫ Junos Os Evolved Version23.4 Updater2-s4

Juniper ≫ Junos Os Evolved Version23.4 Updater2-s5

Juniper ≫ Junos Os Evolved Version23.4 Updater2-s6

Juniper ≫ Junos Os Evolved Version24.2 Update-

Juniper ≫ Junos Os Evolved Version24.2 Updater1

Juniper ≫ Junos Os Evolved Version24.2 Updater1-s2

Juniper ≫ Junos Os Evolved Version24.2 Updater2

Juniper ≫ Junos Os Evolved Version24.2 Updater2-s1

Juniper ≫ Junos Os Evolved Version24.2 Updater2-s2

Juniper ≫ Junos Os Evolved Version24.2 Updater2-s3

Juniper ≫ Junos Os Evolved Version24.4 Update-

Juniper ≫ Junos Os Evolved Version24.4 Updater1

Juniper ≫ Junos Os Evolved Version24.4 Updater1-s2

Juniper ≫ Junos Os Evolved Version24.4 Updater1-s3

Juniper ≫ Junos Os Evolved Version24.4 Updater2

Juniper ≫ Junos Os Evolved Version24.4 Updater2-s1

Juniper ≫ Junos Os Evolved Version25.2 Update-

Juniper ≫ Junos Os Evolved Version25.2 Updater1

Juniper ≫ Junos Os Evolved Version25.2 Updater1-s1

Juniper ≫ Junos Os Evolved Version25.2 Updater2

VulnDex Vulnerability Enrichment

Diese Information steht angemeldeten Benutzern zur Verfügung.

Zu dieser CVE wurde keine Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.06%	0.193

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
sirt@juniper.net	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
sirt@juniper.net	7.1	0	0	CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:U/V:X/RE:M/U:X

CWE-686 Function Call With Incorrect Argument Type

The product calls a function, procedure, or routine, but the caller specifies an argument that is the wrong data type, which may lead to resultant weaknesses.

https://kb.juniper.net/JSA107870

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2026-33783

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2026-33783

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2026-33783

EUVD

Team-orientierte Vulnerability Management Plattform

Features der Plattform

CVE-2026-33783