Unrated severityNVD Advisory· Published Jul 11, 2025· Updated Jul 11, 2025

Junos OS: A low-privileged user can disable an interface

CVE-2025-52963

Description

An Improper Access Control vulnerability in the User Interface (UI) of Juniper Networks Junos OS allows a local, low-privileged attacker to bring down an interface, leading to a Denial-of-Service.

Users with "view" permissions can run a specific request interface command which allows the user to shut down the interface. This issue affects Junos OS:

All versions before 21.2R3-S9,
from 21.4 before 21.4R3-S11,
from 22.2 before 22.2R3-S7,
from 22.4 before 22.4R3-S7,
from 23.2 before 23.2R2-S4,
from 23.4 before 23.4R2-S5,
from 24.2 before 24.2R2-S1,
from 24.4 before 24.4R1-S3, 24.4R2.

Affected products

Juniper Networks/Junosllm-fuzzy
Range: <21.2R3-S9, >=21.4<21.4R3-S11, >=22.2<22.2R3-S7, >=22.4<22.4R3-S7, >=23.2<23.2R2-S4, >=23.4<23.4R2-S5, >=24.2<24.2R2-S1, >=24.4<24.4R1-S3, 24.4R2
Juniper Networks/Junos OSv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

supportportal.juniper.net/JSA100078mitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000