Unrated severityNVD Advisory· Published Oct 9, 2025· Updated Oct 9, 2025

Security Director Policy Enforcer: An unrestricted API allows a network-based unauthenticated attacker to deploy malicious vSRX images to VMWare NSX Server

CVE-2025-11198

Description

A Missing Authentication for Critical Function vulnerability in Juniper Networks Security Director Policy Enforcer allows an unauthenticated, network-based attacker to replace legitimate vSRX images with malicious ones.

If a trusted user initiates deployment, Security Director Policy Enforcer will deliver the attacker's uploaded image to VMware NSX instead of a legitimate one.

This issue affects Security Director Policy Enforcer:

All versions before 23.1R1 Hotpatch v3.

This issue does not affect Junos Space Security Director Insights.

Affected products

Juniper Networks/Security Director Policy Enforcerllm-create
Range: <23.1R1 Hotpatch v3
Juniper Networks/Security Director Policy Enforcerv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

supportportal.juniper.net/JSA103437mitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000