Juniper Junos OS CVE-2025-52955 Memory Corruption Leading to RCE/DoS Advisory

Critical Vulnerability Information Vulnerability ID CVE-2025-52955 Affected Products Junos OS Junos OS Evolved Severity CVSS v3.1: 6.5 (CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:A/H) CVSS v4.0: 7.1 (CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/V:C:N/I:H/A:H/SC:N/SL:N/SA:L) Issue Description When a logical interface fluctuates continuously while using a routing instance, specific updates are sent to the jflow/sflow module. This causes memory corruption, leading to rpd crashes and restarts. Continuous reception of these specific updates results in a persistent denial-of-service condition. Affected Versions Junos OS - All versions prior to 21.2R3-S9 - All 21.4 versions - All 22.2 versions - From 22.4 through 22.4R3-S7 - From 23.2 through 23.2R2-S3 - From 23.4 through 23.4R2-S4 - From 24.2 through 24.2R2 Junos OS Evolved - All 21.2-EVO versions - All 21.4-EVO versions - All 22.2-EVO versions - From 22.4 through 22.4R3-S7-EVO - From 23.2 through 23.2R2-S3-EVO - From 23.4 through 23.4R2-S4-EVO - From 24.2 through 24.2R2-EVO Resolution The following software versions have been updated to address this specific issue: Junos OS: 21.2R3-S9, 22.4R3-S7, 23.2R2-S3, 23.4R2-S4, 24.2R2, 24.4R1, and all subsequent versions. Junos OS Evolved: 22.4R3-S7-EVO, 23.2R2-S3-EVO, 23.4R2-S4-EVO, 24.2R2-EVO, 24.4R1-EVO, and all subsequent versions. Workarounds There are no known workarounds for this issue. Modification History 2025-07-09: Initial release 2025-07-11: Added Junos OS Evolved to affected and resolution sections

Goal Reached Thanks to every supporter — we hit 100%!

Juniper Junos OS CVE-2025-52955 Memory Corruption Leading to RCE/DoS Advisory