CVE-2025-21601

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2025-21601
An Improper Following of Specification by Caller vulnerability in web management (J-Web, Captive Portal, 802.1X, Juniper Secure Connect (JSC) of Juniper Networks Junos OS on SRX Series, EX Series, MX240, MX480, MX960, QFX5120 Series, allows an unauthenticated, network-based attacker, sending genuine traffic targeted to the device to cause the CPU to climb until the device becomes unresponsive. Continuous receipt of these packets will create a sustained Denial of Service (DoS) condition. This issue affects Junos OS:  * All versions before 21.4R3-S9, * from 22.2 before 22.2R3-S5, * from 22.4 before 22.4R3-S4, * from 23.2 before 23.2R2-S3, * from 23.4 before 23.4R2-S3, * from 24.2 before 24.2R1-S1, 24.2R2. An indicator of compromise is to review the CPU % of the httpd process in the CLI: e.g.   show system processes extensive | match httpd  PID nobody       52   0   20M    191M select   2   0:01   80.00% httpd{httpd} <<<<< the percentage of httpd usage if high may be an indicator

7.5 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://supportportal.juniper.net/JSA96452
Configurations

No configuration.

History

15 Apr 2025, 21:15

Type Values Removed Values Added
CWE CWE-573

11 Apr 2025, 15:40

Type Values Removed Values Added
Summary
  • (es) Una vulnerabilidad de seguimiento incorrecto de la especificación por parte del llamador en la administración web (J-Web, Captive Portal, 802.1X, Juniper Secure Connect (JSC) de Juniper Networks Junos OS en SRX Series, EX Series, MX240, MX480, MX960, QFX5120 Series) permite que un atacante no autenticado basado en la red envíe tráfico genuino dirigido al dispositivo para hacer que la CPU aumente su capacidad hasta que el dispositivo deje de responder. La recepción continua de estos paquetes creará una condición sostenida de denegación de servicio (DoS). Este problema afecta a Junos OS: * Todas las versiones anteriores a 21.4R3-S9, * desde 22.2 hasta 22.2R3-S5, * desde 22.4 hasta 22.4R3-S4, * desde 23.2 hasta 23.2R2-S3, * desde 23.4 hasta 23.4R2-S3, * desde 24.2 Antes de 24.2R1-S1, 24.2R2. Un indicador de vulnerabilidad es revisar el porcentaje de CPU del proceso httpd en la CLI: p. ej., "show system projects intensive | match httpd PID nobody 52 0 20M 191M select 2 0:01 80.00% httpd{httpd} &lt;&lt;&lt;&lt;&lt; el porcentaje de uso de httpd, si es alto, puede ser un indicador".

09 Apr 2025, 20:15

Type Values Removed Values Added
New CVE
Information

Published : 2025-04-09 20:15

Updated : 2025-04-15 21:15

NVD link : CVE-2025-21601

Mitre link : CVE-2025-21601

CVE.ORG link : CVE-2025-21601

JSON object : View

Products Affected

No product.

CWE
CWE-573

Improper Following of Specification by Caller