CVE-2025-60006

🗓️ 09 Oct 2025 16:18:55Reported by juniperType

CVE-2025-60006 in Junos OS Evolved CLI enables command injection and privilege escalation via crafted commands.

Reporter	Title	Published	Views	Family All 11
Circl	CVE-2025-60006	8 Oct 202516:00	–	circl
CNNVD	Juniper Networks Junos OS Evolved 操作系统命令注入漏洞	9 Oct 202500:00	–	cnnvd
CNVD	Juniper Networks Junos OS Evolved Operating System Command Injection Vulnerability	15 Oct 202500:00	–	cnvd
Cvelist	CVE-2025-60006 Junos OS Evolved: OS command injection vulnerabilities fixed	9 Oct 202516:18	–	cvelist
EUVD	EUVD-2025-33362	9 Oct 202516:18	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA103163)	8 Oct 202500:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper Networks Junos OS	13 Oct 202507:17	–	ncsc
NVD	CVE-2025-60006	9 Oct 202517:16	–	nvd
Positive Technologies	PT-2025-41440	9 Oct 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-60006	10 Oct 202516:20	–	redhatcve

NVD

Vulners

Node

juniper junos_os_evolvedMatch24.2-

juniper junos_os_evolvedMatch24.2r1

juniper junos_os_evolvedMatch24.2r1-s2

juniper junos_os_evolvedMatch24.2r2

juniper junos_os_evolvedMatch24.2r2-s1

juniper junos_os_evolvedMatch24.4-

juniper junos_os_evolvedMatch24.4r1

juniper junos_os_evolvedMatch24.4r1-s2

juniper junos_os_evolvedMatch24.4r1-s3

[
  {
    "defaultStatus": "unaffected",
    "product": "Junos OS Evolved",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "24.2R2-S2-EVO",
        "status": "affected",
        "version": "24.2",
        "versionType": "semver"
      },
      {
        "lessThan": "24.4R2-EVO",
        "status": "affected",
        "version": "24.4",
        "versionType": "semver"
      },
      {
        "lessThan": "24.2R1",
        "status": "unaffected",
        "version": "0",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA103163

23 Jan 2026 19:38Current

6.7Medium risk

Vulners AI Score6.7

CVSS 44.8

CVSS 3.15.3

EPSS0.00088

SSVC

CWE-78