CVE-2025-21595

🗓️ 09 Apr 2025 19:50:28Reported by juniperType

Vulnerability in Junos OS causes FPC crash via ARP/NDP packets, leading to Denial of Service.

Reporter	Title	Published	Views	Family All 7
CNNVD	Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 安全漏洞	9 Apr 202500:00	–	cnnvd
Cvelist	CVE-2025-21595 Junos OS and Junos OS Evolved: In an EVPN-VXLAN scenario specific ARP or NDP packets cause FPC to crash	9 Apr 202519:50	–	cvelist
EUVD	EUVD-2025-10527	3 Oct 202520:07	–	euvd
NVD	CVE-2025-21595	9 Apr 202520:15	–	nvd
Positive Technologies	PT-2025-15849 · Juniper Networks · Junos Evolved +1	9 Apr 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-21595	11 Apr 202520:32	–	redhatcve
Vulnrichment	CVE-2025-21595 Junos OS and Junos OS Evolved: In an EVPN-VXLAN scenario specific ARP or NDP packets cause FPC to crash	9 Apr 202519:50	–	vulnrichment

NVD

Vulners

Node

juniper junosRange<21.2

juniper junosMatch21.2-

juniper junosMatch21.2r1

juniper junosMatch21.2r1-s1

juniper junosMatch21.2r1-s2

juniper junosMatch21.2r2

juniper junosMatch21.2r2-s1

juniper junosMatch21.2r2-s2

juniper junosMatch21.2r3

juniper junosMatch21.2r3-s1

juniper junosMatch21.2r3-s2

juniper junosMatch21.2r3-s3

juniper junosMatch21.2r3-s4

juniper junosMatch21.2r3-s5

juniper junosMatch21.2r3-s6

juniper junosMatch21.4-

juniper junosMatch21.4r1

juniper junosMatch21.4r1-s1

juniper junosMatch21.4r1-s2

juniper junosMatch21.4r2

juniper junosMatch21.4r2-s1

juniper junosMatch21.4r2-s2

juniper junosMatch21.4r3

juniper junosMatch21.4r3-s1

juniper junosMatch21.4r3-s2

juniper junosMatch21.4r3-s3

juniper junosMatch21.4r3-s4

juniper junosMatch22.2-

juniper junosMatch22.2r1

juniper junosMatch22.2r1-s1

juniper junosMatch22.2r1-s2

juniper junosMatch22.2r2

juniper junosMatch22.2r2-s1

juniper junosMatch22.2r2-s2

juniper junosMatch22.2r3

juniper junosMatch22.3-

juniper junosMatch22.3r1

juniper junosMatch22.3r1-s1

juniper junosMatch22.3r1-s2

juniper junosMatch22.3r2

juniper junosMatch22.3r2-s1

juniper junosMatch22.3r2-s2

juniper junosMatch22.3r3

juniper junosMatch22.4-

juniper junosMatch22.4r1

juniper junosMatch22.4r1-s1

juniper junosMatch22.4r1-s2

juniper junosMatch22.4r2

juniper junosMatch22.4r2-s1

juniper junosMatch22.4r3

juniper junos_os_evolvedRange<21.2

juniper junos_os_evolvedMatch21.2-

juniper junos_os_evolvedMatch21.2r1

juniper junos_os_evolvedMatch21.2r1-s1

juniper junos_os_evolvedMatch21.2r1-s2

juniper junos_os_evolvedMatch21.2r2

juniper junos_os_evolvedMatch21.2r2-s1

juniper junos_os_evolvedMatch21.2r2-s2

juniper junos_os_evolvedMatch21.2r3

juniper junos_os_evolvedMatch21.2r3-s1

juniper junos_os_evolvedMatch21.2r3-s2

juniper junos_os_evolvedMatch21.2r3-s3

juniper junos_os_evolvedMatch21.2r3-s4

juniper junos_os_evolvedMatch21.2r3-s5

juniper junos_os_evolvedMatch21.2r3-s6

juniper junos_os_evolvedMatch21.4-

juniper junos_os_evolvedMatch21.4r1

juniper junos_os_evolvedMatch21.4r1-s1

juniper junos_os_evolvedMatch21.4r1-s2

juniper junos_os_evolvedMatch21.4r2

juniper junos_os_evolvedMatch21.4r2-s1

juniper junos_os_evolvedMatch21.4r2-s2

juniper junos_os_evolvedMatch21.4r3

juniper junos_os_evolvedMatch21.4r3-s1

juniper junos_os_evolvedMatch21.4r3-s2

juniper junos_os_evolvedMatch21.4r3-s3

juniper junos_os_evolvedMatch21.4r3-s4

juniper junos_os_evolvedMatch22.2-

juniper junos_os_evolvedMatch22.2r1

juniper junos_os_evolvedMatch22.2r1-s1

juniper junos_os_evolvedMatch22.2r1-s2

juniper junos_os_evolvedMatch22.2r2

juniper junos_os_evolvedMatch22.2r2-s1

juniper junos_os_evolvedMatch22.2r2-s2

juniper junos_os_evolvedMatch22.2r3

juniper junos_os_evolvedMatch22.3-

juniper junos_os_evolvedMatch22.3r1

juniper junos_os_evolvedMatch22.3r1-s1

juniper junos_os_evolvedMatch22.3r1-s2

juniper junos_os_evolvedMatch22.3r2

juniper junos_os_evolvedMatch22.3r2-s1

juniper junos_os_evolvedMatch22.3r2-s2

juniper junos_os_evolvedMatch22.3r3

juniper junos_os_evolvedMatch22.4-

juniper junos_os_evolvedMatch22.4r1

juniper junos_os_evolvedMatch22.4r1-s1

juniper junos_os_evolvedMatch22.4r1-s2

juniper junos_os_evolvedMatch22.4r2

juniper junos_os_evolvedMatch22.4r2-s1

juniper junos_os_evolvedMatch22.4r2-s2

[
  {
    "defaultStatus": "unaffected",
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.2R3-S7",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThan": "21.4R3-S4",
        "status": "affected",
        "version": "21.4",
        "versionType": "semver"
      },
      {
        "lessThan": "22.2R3-S1",
        "status": "affected",
        "version": "22.2",
        "versionType": "semver"
      },
      {
        "lessThan": "22.3R3-S1",
        "status": "affected",
        "version": "22.3",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R2-S2, 22.4R3",
        "status": "affected",
        "version": "22.4",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Junos OS Evolved",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.2R3-S7-EVO",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThan": "21.4R3-S4-EVO",
        "status": "affected",
        "version": "21.4-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.2R3-S1-EVO",
        "status": "affected",
        "version": "22.2-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.3R3-S1-EVO",
        "status": "affected",
        "version": "22.3-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R3-EVO",
        "status": "affected",
        "version": "22.4-EVO",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA96450

26 Jan 2026 19:35Current

7High risk

Vulners AI Score7

CVSS 3.16.5

CVSS 47.1

EPSS0.00137

SSVC

CWE-401

junos os vulnerability denial of service packet forwarding engine arp ndp heap memory leak