CVE-2025-52954

HIGH 7.8

Junos OS Evolved: A low-privileged user can execute arbitrary Junos commands and modify the configuration, thereby compromising the system

CVSS Score

7.8

EPSS Score

0.0%

EPSS Percentile

0th

A Missing Authorization vulnerability in the internal virtual routing and forwarding (VRF) of Juniper Networks Junos OS Evolved allows a local, low-privileged user to gain root privileges, leading to a system compromise. Any low-privileged user with the capability to send packets over the internal VRF can execute arbitrary Junos commands and modify the configuration, and thus compromise the system. This issue affects Junos OS Evolved: * All versions before 22.2R3-S7-EVO, * from 22.4 before 22.4R3-S7-EVO, * from 23.2 before 23.2R2-S4-EVO, * from 23.4 before 23.4R2-S5-EVO, * from 24.2 before 24.2R2-S1-EVO * from 24.4 before 24.4R1-S2-EVO, 24.4R2-EVO.

CWE	CWE-862
Vendor	juniper networks
Product	junos os evolved
Published	Jul 11, 2025
Last Updated	Feb 26, 2026

Stay Ahead of the Next One

Get instant alerts for juniper networks junos os evolved

Be the first to know when new high vulnerabilities affecting juniper networks junos os evolved are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Juniper Networks / Junos OS Evolved

0 < 22.2R3-S7-EVO 22.4 < 22.4R3-S7-EVO 23.2 < 23.2R2-S4-EVO 23.4 < 23.4R2-S5-EVO 24.2 < 24.2R2-S1-EVO 24.4 < 24.4R1-S2-EVO, 24.4R2-EVO

References

NVD ↗ CVE.org ↗ EPSS Data ↗

supportportal.juniper.net: https://supportportal.juniper.net/JSA100060