216.73.217.172

CVE-2026-33775

· Published 09/04/2026 22:16 · Modified 09/04/2026 22:16

Labels: CVE-2026-33775 2026-04-09CVE-2026-33775CWE-401[email protected]

Essential information

Published
09/04/2026 22:16
Modified
09/04/2026 22:16
Author
Creator
CVSS
7.1 HIGH (v3) 7.1 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

A Missing Release of Memory after Effective Lifetime vulnerability in the BroadBand Edge subscriber management daemon (bbe-smgd) of Juniper Networks Junos OS on MX Series allows an adjacent, unauthenticated attacker to cause a Denial of Service (DoS). If the authentication packet-type option is configured and a received packet does not match that packet type, the memory leak occurs. When all memory available to bbe-smgd has been consumed, no new subscribers will be able to login. The memory utilization of bbe-smgd can be monitored with the following show command: user@host> show system processes extensive | match bbe-smgd The below log message can be observed when this limit has been reached: bbesmgd[<PID>]: %DAEMON-3-SMD_DPROF_RSMON_ERROR: Resource unavailability, Reason: Daemon Heap Memory exhaustion This issue affects Junos OS on MX Series: * all versions before 22.4R3-S8, * 23.2 versions before 23.2R2-S5, * 23.4 versions before 23.4R2-S6, * 24.2 versions before 24.2R2-S2, * 24.4 versions before 24.4R2, * 25.2 versions before 25.2R2.

NVD status

Status
Received — CVE has been recently published to the CVE List and has been received by the NVD.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
juniper networks / junos cpe:2.3:a:juniper_networks:junos:22.4R3-S8:*:*:*:*:*:*:*
juniper networks / junos cpe:2.3:a:juniper_networks:junos:<23.2R2-S5:*:*:*:*:*:*:*
juniper networks / junos cpe:2.3:a:juniper_networks:junos:<23.4R2-S6:*:*:*:*:*:*:*
juniper networks / junos cpe:2.3:a:juniper_networks:junos:<24.2R2-S2:*:*:*:*:*:*:*
juniper networks / junos cpe:2.3:a:juniper_networks:junos:<24.4R2:*:*:*:*:*:*:*
juniper networks / junos cpe:2.3:a:juniper_networks:junos:<25.2R2:*:*:*:*:*:*:*

References