目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1000 CNY

100.0%
コーヒーを一杯おごる

CVE-2025-60003— Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 安全漏洞

CVSS 7.5 · High EPSS 0.02% · P5
新しい脆弱性情報の通知を購読するログインして購読

I. CVE-2025-60003の基本情報

脆弱性情報
脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗

高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。

脆弱性タイトル
Junos OS and Junos OS Evolved: BGP update with a set of specific attributes causes rpd crash
ソース: NVD (National Vulnerability Database)
脆弱性説明
A Buffer Over-read vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). When an affected device receives a BGP update with a set of specific optional transitive attributes over an established peering session, rpd will crash and restart when attempting to advertise the received information to another peer. This issue can only happen if one or both of the BGP peers of the receiving session are non-4-byte-AS capable as determined from the advertised capabilities during BGP session establishment. Junos OS and Junos OS Evolved default behavior is 4-byte-AS capable unless this has been specifically disabled by configuring: [ protocols bgp ... disable-4byte-as ] Established BGP sessions can be checked by executing: show bgp neighbor <IP address> | match "4 byte AS" This issue affects: Junos OS:  * all versions before 22.4R3-S8, * 23.2 versions before 23.2R2-S5, * 23.4 versions before 23.4R2-S6, * 24.2 versions before 24.2R2-S2, * 24.4 versions before 24.4R2; Junos OS Evolved:  * all versions before 22.4R3-S8-EVO, * 23.2 versions before 23.2R2-S5-EVO, * 23.4 versions before 23.4R2-S6-EVO, * 24.2 versions before 24.2R2-S2-EVO, * 24.4 versions before 24.4R2-EVO.
ソース: NVD (National Vulnerability Database)
CVSS情報
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
缓冲区上溢读取
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 安全漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Juniper Networks Junos OS和Juniper Networks Junos OS Evolved都是美国瞻博网络(Juniper Networks)公司的产品。Juniper Networks Junos OS是一套专用于该公司的硬件设备的网络操作系统。该操作系统提供了安全编程接口和Junos SDK。Juniper Networks Junos OS Evolved是Junos OS 的升级版系统。 Juniper Networks Junos OS和Juniper Network
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)

影響を受ける製品

ベンダープロダクト影響を受けるバージョンCPE購読
Juniper NetworksJunos OS 0 ~ 22.4R3-S8 -
Juniper NetworksJunos OS Evolved 0 ~ 22.4R3-S8-EVO -

II. CVE-2025-60003の公開POC

#POC説明ソースリンクShenlongリンク
AI生成POCプレミアム

公開POCは見つかりませんでした。

ログインしてAI POCを生成

III. CVE-2025-60003のインテリジェンス情報

登录查看更多情报信息。

Same Patch Batch · Juniper Networks · 2026-01-15 · 23 CVEs total

CVE-2026-219207.5 HIGHJunos OS: SRX Series: If a specific request is processed by the DNS subsystem flowd will c
CVE-2026-219187.5 HIGHJunos OS: SRX and MX Series: When TCP packets occur in a specific sequence flowd crashes
CVE-2026-219177.5 HIGHJunos OS: SRX Series: Specifically malformed SSL packet causes FPC crash
CVE-2026-219147.5 HIGHJunos OS: SRX Series: A specifically malformed GTP message will cause an FPC crash
CVE-2026-219137.5 HIGHJunos OS: EX4000: A high volume of traffic destined to the device leads to a crash and res
CVE-2026-219057.5 HIGHJunos OS: SRX Series, MX Series with MX-SPC3 or MS-MPC: Receipt of multiple specific SIP m
CVE-2026-219067.5 HIGHJunos OS: SRX Series: With GRE performance acceleration enabled, receipt of a specific ICM
CVE-2025-599607.4 HIGHJunos OS and Junos OS Evolved: DHCP Option 82 messages from clients being passed unmodifie
CVE-2026-219087.1 HIGHJunos OS and Junos OS Evolved: Use after free vulnerability In 802.1X authentication daemo
CVE-2026-219216.5 MEDIUMJunos OS and Junos OS Evolved: When telemetry collectors are frequently subscribing and un
CVE-2026-219116.5 MEDIUMJunos OS Evolved: Flapping management interface causes MAC learning on label-switched inte
CVE-2026-219106.5 MEDIUMJunos OS: EX4k Series, QFX5k Series: In an EVPN-VXLAN configuration link flaps cause Inter
CVE-2026-219096.5 MEDIUMJunos OS and Junos OS Evolved: Receipt of specific IS-IS update packet causes memory leak
CVE-2026-219036.5 MEDIUMJunos OS: Subscribing to telemetry sensors at scale causes all FPCs to crash
CVE-2026-02036.5 MEDIUMJunos OS: Receipt of a specifically malformed ICMP packet causes an FPC restart
CVE-2025-529876.1 MEDIUMParagon Automation: A clickjacking vulnerability in the web server configuration has been
CVE-2026-219075.9 MEDIUMJunos Space: TLS/SSL server supports use of static key ciphers (ssl-static-key-ciphers)
CVE-2025-600115.8 MEDIUMJunos OS and Junos OS Evolved: Optional transitive BGP attribute is modified before propag
CVE-2026-219125.5 MEDIUMJunos OS: MX10k Series: 'show system firmware' CLI command may lead to LC480 or LC2101 lin
CVE-2025-600075.5 MEDIUMJunos OS: A specifically crafted 'show chassis' command causes chassisd to crash

Showing 20 of 23 CVEs. View all on vendor page →

IV. 関連脆弱性

同じ製品: Junos OS
同じベンダー: Juniper Networks
同じ弱点: CWE-126

V. CVE-2025-60003へのコメント

まだコメントはありません

コメントを残す