Improper check for unusual or exceptional conditions in Junos OS Evolved and Juniper Junos OS
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2025-30655 |
| CWE-ID | CWE-754 |
| Exploitation vector | Local |
| Public exploit | N/A |
| Vulnerable software |
Junos OS Evolved Operating systems & Components / Operating system Juniper Junos OS Operating systems & Components / Operating system |
| Vendor | Juniper Networks, Inc. |
Security Bulletin
This security bulletin contains one low risk vulnerability.
1) Improper check for unusual or exceptional conditions
EUVDB-ID: #VU107616
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2025-30655
CWE-ID:
CWE-754 - Improper Check for Unusual or Exceptional Conditions
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to improper check for unusual or exceptional conditions error in the Routing Protocol Daemon (rpd). A local user can cause a Denial-of-Service (DoS).
When a specific "show bgp neighbor" CLI command is run, the rpd cpu utilization rises and eventually causes a crash and restart.
Repeated use of this command will cause a sustained DoS condition.
MitigationInstall updates from vendor's website.
Vulnerable software versionsJunos OS Evolved: before 21.2R3-S9-EVO, 21.4R3-S8-EVO, 21.2R3-S9-EVO
Juniper Junos OS: before 21.2R3-S9, 21.4R3-S8, 21.2R3-S9
CPE2.3- cpe:2.3:o:juniper_networks:junos_os_evolved:*:*:*:*:*:*:*:*
- cpe:2.3:o:juniper_networks:juniper_junos_os:*:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
