CVE-2025-59969
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Summary
A Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in the advanced forwarding toolkit (evo-aftmand/evo-pfemand) of Juniper Networks Junos OS Evolved on PTX Series or QFX5000 Series allows an unauthenticated, adjacent attacker to cause a Denial of Service (DoS).An attacker sending crafted multicast packets will cause line cards running evo-aftmand/evo-pfemand to crash and restart or non-line card devices to crash and restart. Continued receipt and processing of these packets will sustain the Denial of Service (DoS) condition.
This issue affects Junos OS Evolved PTX Series:
- All versions before 22.4R3-S8-EVO,
- from 23.2 before 23.2R2-S5-EVO,
- from 23.4 before 23.4R2-EVO,
- from 24.2 before 24.2R2-EVO,
- from 24.4 before 24.4R2-EVO.
This issue affects Junos OS Evolved on QFX5000 Series:
- 22.2-EVO version before 22.2R3-S7-EVO,
- 22.4-EVO version before 22.4R3-S7-EVO,
- 23.2-EVO versions before 23.2R2-S4-EVO,
- 23.4-EVO versions before 23.4R2-S5-EVO,
- 24.2-EVO versions before 24.2R2-S1-EVO,
- 24.4-EVO versions before 24.4R1-S3-EVO, 24.4R2-EVO.
This issue does not affect Junos OS Evolved on QFX5000 Series versions before: 21.2R2-S1-EVO, 21.2R3-EVO, 21.3R2-EVO, 21.4R1-EVO, and 22.1R1-EVO.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Juniper Networks | Junos OS Evolved | 0 < 22.4R3-S8-EVO | affected |
| Juniper Networks | Junos OS Evolved | 23.2 < 23.2R2-S5-EVO | affected |
| Juniper Networks | Junos OS Evolved | 23.4 < 23.4R2-EVO | affected |
| Juniper Networks | Junos OS Evolved | 24.2 < 24.2R2-EVO | affected |
| Juniper Networks | Junos OS Evolved | 24.4 < 24.4R2-EVO | affected |
| Juniper Networks | Junos OS Evolved | 22.2 < 22.2R3-S7-EVO | affected |
| Juniper Networks | Junos OS Evolved | 22.4 < 22.4R3-S7-EVO | affected |
| Juniper Networks | Junos OS Evolved | 23.2 < 23.2R2-S4-EVO | affected |
| Juniper Networks | Junos OS Evolved | 23.4 < 23.4R2-S5-EVO | affected |
| Juniper Networks | Junos OS Evolved | 24.2 < 24.2R2-S1-EVO | affected |
| Juniper Networks | Junos OS Evolved | 24.4 < 24.4R1-S3-EVO, 24.4R2-EVO | affected |
Weaknesses
- CWE-120: CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Workarounds
There are no known workarounds for this issue.
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: partial
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.