CVE-2025-21590
Essential information
- Published
- 13/03/2025 01:00
- Modified
- 21/12/2025 13:29
- Author
- Cybersecurity and Infrastructure Security Agency
- Creator
- Cybersecurity and Infrastructure Security Agency
- CVSS
- 4.4 MEDIUM (v3.1)
- CISA KEV
- Yes
- CWE
- —
- CVSS vector
-
—
CVSS:3.1/AV:L/C:N/I:H/A:N—
CVSS metrics
- Access vector
- —
- Access complexity
- —
- Authentication
- —
- Confidentiality impact
- —
- Integrity impact
- —
- Availability impact
- —
- Exploitability
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- Local
- Attack complexity
- LOW
- Privileges required
- HIGH
- User interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality impact
- None
- Integrity impact
- High
- Availability impact
- None
- Exploit code maturity
- —
- Remediation level
- —
- Report confidence
- —
- Temporal score
- —
- Attack vector
- —
- Attack complexity
- —
- Attack requirements
- —
- Privileges required
- —
- User interaction
- —
- Confidentiality (V)
- —
- Confidentiality (S)
- —
- Integrity (V)
- —
- Integrity (S)
- —
- Availability (V)
- —
- Availability (S)
- —
- Exploit maturity
- —
Description
An Improper Isolation or Compartmentalization vulnerability in the kernel of Juniper Networks Junos OS allows a local attacker with high privileges to compromise the integrity of the device.
A local attacker with access to the shell is able to inject arbitrary code which can compromise an affected device.
This issue is not exploitable from the Junos CLI.
This issue affects Junos OS:
* All versions before 21.2R3-S9,
* 21.4 versions before 21.4R3-S10,
* 22.2 versions before 22.2R3-S6,
* 22.4 versions before 22.4R3-S6,
* 23.2 versions before 23.2R2-S3,
* 23.4 versions before 23.4R2-S4,
* 24.2 versions before 24.2R1-S2, 24.2R2.
NVD status
- Status
- Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
- Source
- [email protected]
- NVD
- View on NVD
Affected products (CPE)
| Product | CPE |
|---|---|
| juniper / juniper junos os | cpe:2.3:o:juniper:juniper_junos_os:*:*:*:*:*:*:*:* |
| juniper / juniper junos os | cpe:2.3:a:juniper:juniper_junos_os:21.1:*:*:*:*:*:*:* |
| juniper / juniper junos os | cpe:2.3:a:juniper:juniper_junos_os:21.4:*:*:*:*:*:*:* |
| juniper / juniper junos os | cpe:2.3:a:juniper:juniper_junos_os:22.2:*:*:*:*:*:*:* |
| juniper / juniper junos os | cpe:2.3:a:juniper:juniper_junos_os:22.4:*:*:*:*:*:*:* |
| juniper / juniper junos os | cpe:2.3:a:juniper:juniper_junos_os:23.2:*:*:*:*:*:*:* |
| juniper / juniper junos os | cpe:2.3:a:juniper:juniper_junos_os:23.4:*:*:*:*:*:*:* |
| juniper / juniper junos os | cpe:2.3:a:juniper:juniper_junos_os:24.2:*:*:*:*:*:*:* |