CVE-2025-30647

HIGH EPSS 10.1%

Published Apr 9, 20251y ago · Modified Jun 17, 20261w ago

7.1 CVSS 4.0

High

Published Apr 9, 2025 1y ago

Last Modified Jun 17, 2026 1w ago

Description

A Missing Release of Memory after Effective Lifetime vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on MX Series allows an unauthenticated adjacent attacker to cause a Denial-of-Service (DoS). In a subscriber management scenario, login/logout activity triggers a memory leak, and the leaked memory gradually increments and eventually results in a crash. user@host> show chassis fpc Temp CPU Utilization (%) CPU Utilization (%) Memory Utilization (%) Slot State (C) Total Interrupt 1min 5min 15min DRAM (MB) Heap Buffer 2 Online 36 10 0 9 8 9 32768 26 0 This issue affects Junos OS on MX Series: * All versions before 21.2R3-S9 * from 21.4 before 21.4R3-S10 * from 22.2 before 22.2R3-S6 * from 22.4 before 22.4R3-S5 * from 23.2 before 23.2R2-S3 * from 23.4 before 23.4R2-S3 * from 24.2 before 24.2R2.

CVSS Details

Base Score

7.1

Exploitability

—

Impact

—

Vector string

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

Attack Vector Adjacent

Attack Complexity Low

Privileges Required None

User Interaction None

Scope X

Threat Intelligence

EPSS Exploit Probability

10.1% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-401

Affected Products 87

Vendor	Product	Version	Range
juniper	junos	*	<21.2
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.2	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	21.4	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.2	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	22.4	any
juniper	junos	23.2	any
juniper	junos	23.2	any
juniper	junos	23.2	any
juniper	junos	23.2	any
juniper	junos	23.2	any
juniper	junos	23.2	any
juniper	junos	23.2	any
juniper	junos	23.4	any
juniper	junos	23.4	any
juniper	junos	23.4	any
juniper	junos	23.4	any
juniper	junos	23.4	any
juniper	junos	23.4	any
juniper	junos	23.4	any
juniper	junos	24.2	any
juniper	junos	24.2	any
juniper	junos	24.2	any
juniper	junos	24.2	any
juniper	mx10004	*	any
juniper	mx10008	*	any
juniper	mx2008	*	any
juniper	mx2010	*	any
juniper	mx2020	*	any
juniper	mx204	*	any
juniper	mx240	*	any
juniper	mx304	*	any
juniper	mx480	*	any
juniper	mx960	*	any

References 1

supportportal.juniper.net https://supportportal.juniper.net/JSA96457

Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.