Unrated severityNVD Advisory· Published Jan 15, 2026· Updated Jan 15, 2026

Junos OS and Junos OS Evolved: When telemetry collectors are frequently subscribing and unsubscribing to sensors chassisd or rpd will crash

CVE-2026-21921

Description

A Use After Free vulnerability in the chassis daemon (chassisd) of Juniper Networks Junos OS and Junos OS Evolved allows a network-based attacker authenticated with low privileges to cause a Denial-of-Service (DoS).

When telemetry collectors are frequently subscribing and unsubscribing to sensors continuously over a long period of time, telemetry-capable processes like chassisd, rpd or mib2d will crash and restart, which - depending on the process - can cause a complete outage until the system has recovered.

This issue affects:

Junos OS:

all versions before 22.4R3-S8,
23.2 versions before 23.2R2-S5,
23.4 versions before 23.4R2;

Junos OS Evolved:

all versions before 22.4R3-S8-EVO,
23.2 versions before 23.2R2-S5-EVO,
23.4 versions before 23.4R2-EVO.

Affected products

Juniper Networks/Junos Os Evolvedv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

kb.juniper.net/JSA106021mitrevendor-advisory
supportportal.juniper.net/JSA106021mitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000