CVE-2026-21908

A Use After Free vulnerability was identified in the 802.1X authentication daemon dot1xd of Juniper Networks Junos OS and Junos OS Evolved that could allow an authenticated, network-adjacent attacker flapping a port to crash the dot1xd process, leading to a Denial of Service DoS, or potentially...

CVE-2026-21908 Junos OS and Junos OS Evolved: Use after free vulnerability In 802.1X authentication daemon can cause crash of the dot1xd process

A Use After Free vulnerability was identified in the 802.1X authentication daemon dot1xd of Juniper Networks Junos OS and Junos OS Evolved that could allow an authenticated, network-adjacent attacker flapping a port to crash the dot1xd process, leading to a Denial of Service DoS, or potentially...

CVE-2026-21908

Summary (CVE-2026-21908): A Use-After-Free in Juniper Networks Junos OS and Junos OS Evolved’s 802.1X daemon (dot1xd) can be triggered by a port bounce during a change in authorization (CoA). Successful exploitation could cause a crash (DoS) or potentially execute code with root privileges. Affec...

PT-2026-3122

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions 23.2R2-S1 through 23.2R2-S4 Juniper Networks Junos OS versions 23.4R2 through 23.4R2-S5 Juniper Networks Junos OS versions 24.2 through 24.2R2-S2 Juniper Networks Junos OS versions 24.4 through 24.4R2 Juniper...