216.73.217.80

CVE-2025-30650

· Published 08/04/2026 19:24 · Modified 09/04/2026 22:16

Labels: CVE-2025-30650 2026-04-08CVE-2025-30650CWE-306[email protected]

Essential information

Published
08/04/2026 19:24
Modified
09/04/2026 22:16
Author
Creator
CVSS
8.4 HIGH (v3) 8.4 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A Missing Authentication for Critical Function vulnerability in command processing of Juniper Networks Junos OS allows a privileged local attacker to gain access to line cards running Junos OS Evolved as root. This issue affects systems running Junos OS using Linux-based line cards. Affected line cards include: * MPC7, MPC8, MPC9, MPC10, MPC11 * LC2101, LC2103 * LC480, LC4800, LC9600 * MX304 (built-in FPC) * MX-SPC3 * SRX5K-SPC3 * EX9200-40XS * FPC3-PTX-U2, FPC3-PTX-U3 * FPC3-SFF-PTX * LC1101, LC1102, LC1104, LC1105 This issue affects Junos OS:  * all versions before 22.4R3-S8,  * from 23.2 before 23.2R2-S6,  * from 23.4 before 23.4R2-S6,  * from 24.2 before 24.2R2-S3,  * from 24.4 before 24.4R2, * from 25.2 before 25.2R2.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
juniper networks / junos os cpe:2.3:o:juniper_networks:junos_os:*:<22.4R3-S8>:*:*:*:*:*:*
juniper networks / junos os cpe:2.3:o:juniper_networks:junos_os:*:<23.2R2-S6>:*:*:*:*:*:*
juniper networks / junos os cpe:2.3:o:juniper_networks:junos_os:*:<23.4R2-S6>:*:*:*:*:*:*
juniper networks / junos os cpe:2.3:o:juniper_networks:junos_os:*:<24.2R2-S3>:*:*:*:*:*:*
juniper networks / junos os cpe:2.3:o:juniper_networks:junos_os:*:<24.4R2>:*:*:*:*:*:*
juniper networks / junos os cpe:2.3:o:juniper_networks:junos_os:*:<25.2R2>:*:*:*:*:*:*

References