CVE-2025-52949
BaseFortify
Publication date: 2025-07-11
Last updated on: 2025-07-15
Assigner: Juniper Networks, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| juniper | junos_os_evolved | * |
| juniper | junos_os | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-130 | The product parses a formatted message or structure, but it does not handle or incorrectly handles a length field that is inconsistent with the actual length of the associated data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Improper Handling of Length Parameter Inconsistency in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved. It allows a logically adjacent BGP peer to send a specially malformed BGP packet that causes the rpd process to crash and restart. This leads to a Denial of Service (DoS) condition that can be sustained if the malformed packets continue to be received and processed. Only systems configured for Ethernet Virtual Private Networking (EVPN) signaling are vulnerable, and it affects both iBGP and eBGP, as well as IPv4 and IPv6.
How can this vulnerability impact me? :
The vulnerability can cause the routing protocol daemon (rpd) to crash and restart repeatedly, resulting in a Denial of Service (DoS). This disrupts network routing and connectivity for affected systems, potentially causing network outages or degraded network performance. Since the issue can be sustained by continued receipt of malformed packets, it can lead to prolonged service disruption.