CVE-2025-30651

EUVD-2025-10509
A Buffer Access with Incorrect Length Value vulnerability in the routing protocol daemon (rpd) of Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS).
When an attacker sends a specific ICMPv6 packet to an interface with "protocols router-advertisement" configured, rpd crashes and restarts. Continued receipt of this packet will cause a sustained DoS condition. 




This issue only affects systems configured with IPv6.



This issue affects Junos OS: 


  *  All versions before 21.2R3-S9, 
  *  from 21.4 before 21.4R3-S10, 
  *  from 22.2 before 22.2R3-S6, 
  *  from 22.4 before 22.4R3-S4, 
  *  from 23.2 before 23.2R2-S2, 
  *  from 23.4 before 23.4R2; 



and Junos OS Evolved: 
  *  All versions before 21.2R3-S9-EVO, 
  *  from 21.4-EVO before 21.4R3-S10-EVO, 
  *  from 22.2-EVO before 22.2R3-S6-EVO, 
  *  from 22.4-EVO before 22.4R3-S4-EVO, 
  *  from 23.2-EVO before 23.2R2-S2-EVO, 
  *  from 23.4-EVO before 23.4R2-EVO.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
juniperCNA
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
Affected Products (NVD)
VendorProductVersion
juniperjunos
𝑥
< 21.2
juniperjunos
21.2
juniperjunos
21.2:r1
juniperjunos
21.2:r1-s1
juniperjunos
21.2:r1-s2
juniperjunos
21.2:r2
juniperjunos
21.2:r2-s1
juniperjunos
21.2:r2-s2
juniperjunos
21.2:r3
juniperjunos
21.2:r3-s1
juniperjunos
21.2:r3-s2
juniperjunos
21.2:r3-s3
juniperjunos
21.2:r3-s4
juniperjunos
21.2:r3-s5
juniperjunos
21.2:r3-s6
juniperjunos
21.2:r3-s7
juniperjunos
21.2:r3-s8
juniperjunos
21.4
juniperjunos
21.4:r1
juniperjunos
21.4:r1-s1
juniperjunos
21.4:r1-s2
juniperjunos
21.4:r2
juniperjunos
21.4:r2-s1
juniperjunos
21.4:r2-s2
juniperjunos
21.4:r3
juniperjunos
21.4:r3-s1
juniperjunos
21.4:r3-s2
juniperjunos
21.4:r3-s3
juniperjunos
21.4:r3-s4
juniperjunos
21.4:r3-s5
juniperjunos
21.4:r3-s6
juniperjunos
21.4:r3-s7
juniperjunos
21.4:r3-s8
juniperjunos
21.4:r3-s9
juniperjunos
22.2
juniperjunos
22.2:r1
juniperjunos
22.2:r1-s1
juniperjunos
22.2:r1-s2
juniperjunos
22.2:r2
juniperjunos
22.2:r2-s1
juniperjunos
22.2:r2-s2
juniperjunos
22.2:r3
juniperjunos
22.2:r3-s1
juniperjunos
22.2:r3-s2
juniperjunos
22.2:r3-s3
juniperjunos
22.2:r3-s4
juniperjunos
22.2:r3-s5
juniperjunos
22.4
juniperjunos
22.4:r1
juniperjunos
22.4:r1-s1
juniperjunos
22.4:r1-s2
juniperjunos
22.4:r2
juniperjunos
22.4:r2-s1
juniperjunos
22.4:r2-s2
juniperjunos
22.4:r3
juniperjunos
22.4:r3-s1
juniperjunos
22.4:r3-s2
juniperjunos
22.4:r3-s3
juniperjunos
23.2
juniperjunos
23.2:r1
juniperjunos
23.2:r1-s1
juniperjunos
23.2:r1-s2
juniperjunos
23.2:r2
juniperjunos
23.2:r2-s1
juniperjunos
23.4
juniperjunos
23.4:r1
juniperjunos
23.4:r1-s1
juniperjunos
23.4:r1-s2
juniperjunos_os_evolved
𝑥
< 21.2
juniperjunos_os_evolved
21.2
juniperjunos_os_evolved
21.2:r1
juniperjunos_os_evolved
21.2:r1-s1
juniperjunos_os_evolved
21.2:r1-s2
juniperjunos_os_evolved
21.2:r2
juniperjunos_os_evolved
21.2:r2-s1
juniperjunos_os_evolved
21.2:r2-s2
juniperjunos_os_evolved
21.2:r3
juniperjunos_os_evolved
21.2:r3-s1
juniperjunos_os_evolved
21.2:r3-s2
juniperjunos_os_evolved
21.2:r3-s3
juniperjunos_os_evolved
21.2:r3-s4
juniperjunos_os_evolved
21.2:r3-s5
juniperjunos_os_evolved
21.2:r3-s6
juniperjunos_os_evolved
21.2:r3-s7
juniperjunos_os_evolved
21.2:r3-s8
juniperjunos_os_evolved
21.4
juniperjunos_os_evolved
21.4:r1
juniperjunos_os_evolved
21.4:r1-s1
juniperjunos_os_evolved
21.4:r1-s2
juniperjunos_os_evolved
21.4:r2
juniperjunos_os_evolved
21.4:r2-s1
juniperjunos_os_evolved
21.4:r2-s2
juniperjunos_os_evolved
21.4:r3
juniperjunos_os_evolved
21.4:r3-s1
juniperjunos_os_evolved
21.4:r3-s2
juniperjunos_os_evolved
21.4:r3-s3
juniperjunos_os_evolved
21.4:r3-s4
juniperjunos_os_evolved
21.4:r3-s5
juniperjunos_os_evolved
21.4:r3-s6
juniperjunos_os_evolved
21.4:r3-s7
juniperjunos_os_evolved
21.4:r3-s8
juniperjunos_os_evolved
21.4:r3-s9
juniperjunos_os_evolved
22.2
juniperjunos_os_evolved
22.2:r1
juniperjunos_os_evolved
22.2:r1-s1
juniperjunos_os_evolved
22.2:r1-s2
juniperjunos_os_evolved
22.2:r2
juniperjunos_os_evolved
22.2:r2-s1
juniperjunos_os_evolved
22.2:r2-s2
juniperjunos_os_evolved
22.2:r3
juniperjunos_os_evolved
22.2:r3-s1
juniperjunos_os_evolved
22.2:r3-s2
juniperjunos_os_evolved
22.2:r3-s3
juniperjunos_os_evolved
22.2:r3-s4
juniperjunos_os_evolved
22.2:r3-s5
juniperjunos_os_evolved
22.4
juniperjunos_os_evolved
22.4:r1
juniperjunos_os_evolved
22.4:r1-s1
juniperjunos_os_evolved
22.4:r1-s2
juniperjunos_os_evolved
22.4:r2
juniperjunos_os_evolved
22.4:r2-s1
juniperjunos_os_evolved
22.4:r2-s2
juniperjunos_os_evolved
22.4:r3
juniperjunos_os_evolved
22.4:r3-s1
juniperjunos_os_evolved
22.4:r3-s2
juniperjunos_os_evolved
22.4:r3-s3
juniperjunos_os_evolved
23.2
juniperjunos_os_evolved
23.2:r1
juniperjunos_os_evolved
23.2:r1-s1
juniperjunos_os_evolved
23.2:r1-s2
juniperjunos_os_evolved
23.2:r2
juniperjunos_os_evolved
23.2:r2-s1
juniperjunos_os_evolved
23.4
juniperjunos_os_evolved
23.4:r1
juniperjunos_os_evolved
23.4:r1-s1
juniperjunos_os_evolved
23.4:r1-s2
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://supportportal.juniper.net/JSA96461