CVE-2025-52952

Summary

An Out-of-bounds Write vulnerability in the connectivity fault management (CFM) daemon of Juniper Networks Junos OS on MX Series with MPC-BUILTIN, MPC1 through MPC9 line cards allows an unauthenticated adjacent attacker to send a malformed packet to the device, leading to an FPC crash and restart, resulting in a Denial of Service (DoS).

Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.

This issue affects Juniper Networks: Junos OS:

  • All versions before 22.2R3-S1,
  • from 22.4 before 22.4R2.

This feature is not enabled by default.

Affected Software

VendorProductVersion RangeStatus
Juniper NetworksJunos OS0 < 22.2R3-S1affected
Juniper NetworksJunos OS22.4 < 22.4R2affected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

Workarounds

There are no known workarounds for this issue.

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References