CVE-2025-52984 Junos OS and Junos OS Evolved: When a static route points to a reject next-hop and a gNMI query for this route is processed, RPD crashes

🗓️ 11 Jul 2025 15:09:37Reported by juniperType

Vulnerability in Junos OS allows crash of routing protocol daemon through static routes and gNMI queries

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerability of the Demon Routing Protocol Daemon (RPD) in Juniper Networks’ Junos OS and Junos OS Evolved operating systems allows a attacker to compromise the availability of the device.	21 Jul 202500:00	–	bdu_fstec
CNNVD	Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 代码问题漏洞	11 Jul 202500:00	–	cnnvd
CVE	CVE-2025-52984	11 Jul 202515:09	–	cve
EUVD	EUVD-2025-21146	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Vulnerability (JSA100090)	9 Jul 202500:00	–	nessus
NVD	CVE-2025-52984	11 Jul 202516:15	–	nvd
Positive Technologies	PT-2025-29254	9 Jul 202500:00	–	ptsecurity
RedhatCVE	CVE-2025-52984	13 Jul 202515:20	–	redhatcve
Vulnrichment	CVE-2025-52984 Junos OS and Junos OS Evolved: When a static route points to a reject next-hop and a gNMI query for this route is processed, RPD crashes	11 Jul 202515:09	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "21.2R3-S9",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThan": "21.4R3-S10",
        "status": "affected",
        "version": "21.4",
        "versionType": "semver"
      },
      {
        "lessThan": "22.2R3-S6",
        "status": "affected",
        "version": "22.2",
        "versionType": "semver"
      },
      {
        "lessThan": "22.4R3-S6",
        "status": "affected",
        "version": "22.4",
        "versionType": "semver"
      },
      {
        "lessThan": "23.2R2-S3",
        "status": "affected",
        "version": "23.2",
        "versionType": "semver"
      },
      {
        "lessThan": "23.4R2-S4",
        "status": "affected",
        "version": "23.4",
        "versionType": "semver"
      },
      {
        "lessThan": "24.2R1-S2, 24.2R2",
        "status": "affected",
        "version": "24.2",
        "versionType": "semver"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "Junos OS Evolved",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "22.4R3-S7-EVO",
        "status": "affected",
        "version": "0",
        "versionType": "semver"
      },
      {
        "lessThan": "23.2R2-S3-EVO",
        "status": "affected",
        "version": "23.2-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "23.4R2-S4-EVO",
        "status": "affected",
        "version": "23.4-EVO",
        "versionType": "semver"
      },
      {
        "lessThan": "24.2R2-EVO",
        "status": "affected",
        "version": "24.2-EVO",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
supportportal	www.supportportal.juniper.net/JSA100090

11 Jul 2025 15:09Current

CVSS 3.15.9

CVSS 48.2

EPSS0.00388

CWE-476