Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Junos OS — Vulnerabilities & Security Advisories 678

All 678 CVE vulnerabilities found in Junos OS, with AI-generated Chinese analysis, references, and POCs.

This page documents known Common Weakness Enumerations associated with Juniper Networks Junos OS. It aggregates data regarding software vulnerabilities, configuration errors, and security bypass issues affecting this specific network operating system. The collection includes vulnerabilities identified through official vendor advisories, independent security research, and public database entries. This resource covers a broad time range, capturing historical weaknesses from early releases to recent updates, ensuring a comprehensive view of the product’s security evolution. Visitors can track Juniper Networks' advisory patterns to understand how different weakness classes are addressed over time. Users can also examine the detailed history of specific vulnerabilities within Junos OS to assess impact and remediation strategies. This information is intended for security professionals, system administrators, and researchers who need to evaluate the risk posture of Juniper infrastructure. The content is structured to facilitate easy lookup of vulnerability details without overwhelming the reader with unnecessary technical noise. By consolidating these data points, the page serves as a central reference for understanding the security landscape of Junos OS. It avoids promotional language to maintain an objective and technical focus, ensuring that the information remains useful for decision-making and compliance purposes. All entries are sourced from verified disclosures to ensure accuracy and reliability.

Vendor: Juniper Networks

CVE IDTitleCVSSSeverityPublished
CVE-2026-33780 Junos OS and Junos OS Evolved: In an EVPN-MPLS scenario churn of ESI routes causes a memory leak in l2ald CWE-401 6.5 Medium2026-04-09
CVE-2026-33773 Junos OS: EX Series, QFX Series: If the same egress filter is configured on both an IRB and a physical interface one of those is not applied CWE-1419 5.8 Medium2026-04-09
CVE-2026-33786 Junos OS: SRX1600, SRX2300, SRX4300: When a specific show command is executed chassisd crashes CWE-754 5.5 Medium2026-04-09
CVE-2026-21916 Junos OS: A low privileged user can escalate their privileges so that they can login as root CWE-61 7.3 High2026-04-09
CVE-2026-21919 Junos OS and Junos OS Evolved: A high frequency of connecting and disconnecting NETCONF sessions causes management unavailability CWE-821 6.5 Medium2026-04-09
CVE-2026-33793 Junos OS and Junos OS Evolved: When an unsigned Python op script configuration is present, a local low privileged user can compromise the system CWE-250 7.8 High2026-04-09
CVE-2025-30650 Junos OS: Privileged local user can gain access to a Linux-based FPC as root CWE-306 6.7 Medium2026-04-08
CVE-2026-21921 Junos OS and Junos OS Evolved: When telemetry collectors are frequently subscribing and unsubscribing to sensors chassisd or rpd will crash CWE-416 6.5 Medium2026-01-15
CVE-2026-21920 Junos OS: SRX Series: If a specific request is processed by the DNS subsystem flowd will crash CWE-252 7.5 High2026-01-15
CVE-2026-21918 Junos OS: SRX and MX Series: When TCP packets occur in a specific sequence flowd crashes CWE-415 7.5 High2026-01-15
CVE-2026-21917 Junos OS: SRX Series: Specifically malformed SSL packet causes FPC crash CWE-1286 7.5 High2026-01-15
CVE-2026-21914 Junos OS: SRX Series: A specifically malformed GTP message will cause an FPC crash CWE-667 7.5 High2026-01-15
CVE-2026-21913 Junos OS: EX4000: A high volume of traffic destined to the device leads to a crash and restart CWE-1419 7.5 High2026-01-15
CVE-2026-21912 Junos OS: MX10k Series: 'show system firmware' CLI command may lead to LC480 or LC2101 line card reset CWE-367 5.5 Medium2026-01-15
CVE-2026-21910 Junos OS: EX4k Series, QFX5k Series: In an EVPN-VXLAN configuration link flaps cause Inter-VNI traffic drop CWE-754 6.5 Medium2026-01-15
CVE-2026-21909 Junos OS and Junos OS Evolved: Receipt of specific IS-IS update packet causes memory leak leading to RPD crash CWE-401 6.5 Medium2026-01-15
CVE-2026-21908 Junos OS and Junos OS Evolved: Use after free vulnerability In 802.1X authentication daemon can cause crash of the dot1xd process CWE-416 7.1 High2026-01-15
CVE-2026-21906 Junos OS: SRX Series: With GRE performance acceleration enabled, receipt of a specific ICMP packet causes the PFE to crash CWE-755 7.5 High2026-01-15
CVE-2026-21905 Junos OS: SRX Series, MX Series with MX-SPC3 or MS-MPC: Receipt of multiple specific SIP messages results in flow management process crash CWE-835 7.5 High2026-01-15
CVE-2026-21903 Junos OS: Subscribing to telemetry sensors at scale causes all FPCs to crash CWE-121 6.5 Medium2026-01-15
CVE-2026-0203 Junos OS: Receipt of a specifically malformed ICMP packet causes an FPC restart CWE-755 6.5 Medium2026-01-15
CVE-2025-60011 Junos OS and Junos OS Evolved: Optional transitive BGP attribute is modified before propagation to peers causing sessions to flap CWE-754 5.8 Medium2026-01-15
CVE-2025-60007 Junos OS: A specifically crafted 'show chassis' command causes chassisd to crash CWE-476 5.5 Medium2026-01-15
CVE-2025-60003 Junos OS and Junos OS Evolved: BGP update with a set of specific attributes causes rpd crash CWE-126 7.5 High2026-01-15
CVE-2025-59961 Junos OS and Junos OS Evolved: Unix socket used to control the jdhcpd process is world-writable CWE-732 5.5 Medium2026-01-15
CVE-2025-59960 Junos OS and Junos OS Evolved: DHCP Option 82 messages from clients being passed unmodified to the DHCP server CWE-754 7.4 High2026-01-15
CVE-2025-59959 Junos OS and Junos OS Evolved: Executing a specific show command leads to an rpd crash CWE-822 5.5 Medium2026-01-15
CVE-2025-60010 Junos OS and Junos OS Evolved: Device allows login for user with expired password CWE-262 5.4 Medium2025-10-09
CVE-2025-60004 Junos OS and Junos OS Evolved: Specific BGP EVPN update message causes rpd crash CWE-754 7.5 High2025-10-09
CVE-2025-59980 Junos OS: When a user with the name ftp or anonymous is configured unauthenticated filesystem access is allowed CWE-305 6.5 Medium2025-10-09

All 678 known CVE vulnerabilities affecting Junos OS with full Chinese analysis, references, and POCs where available.