CVE-2025-59975
BaseFortify
Publication date: 2025-10-09
Last updated on: 2025-10-14
Assigner: Juniper Networks, Inc.
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| juniper | junos_space | * |
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-400 | The product does not properly control the allocation and maintenance of a limited resource. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Uncontrolled Resource Consumption issue in the HTTP daemon (httpd) of Juniper Networks Junos Space. An unauthenticated attacker can flood the device with inbound API calls, consuming all system resources. This leads to exhaustion of file handles, which blocks access to the system via SSH and the web user interface, causing a Denial of Service (DoS). The system requires a manual reboot to restore functionality.
How can this vulnerability impact me? :
The impact of this vulnerability is a Denial of Service (DoS) on the management interfaces of the affected device. An attacker can flood the system with API calls, consuming all available file handles and preventing access through SSH and the web user interface. This disrupts management and operation of the device until it is manually rebooted.