CVE-2026-33797

HIGH 7.4

Junos OS and Junos OS Evolved: An attacker sending a specific genuine BGP packet causes a BGP reset

CVSS Score

7.4

EPSS Score

0.0%

EPSS Percentile

6th

An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker, sending a specific genuine BGP packet in an already established BGP session to reset only that session causing a Denial of Service (DoS). An attacker repeatedly sending the packet will sustain the Denial of Service (DoS).This issue affects Junos OS: * 25.2 versions before 25.2R2 This issue doesn't not affected Junos OS versions before 25.2R1. This issue affects Junos OS Evolved: * 25.2-EVO versions before 25.2R2-EVO This issue doesn't not affected Junos OS Evolved versions before 25.2R1-EVO. eBGP and iBGP are affected. IPv4 and IPv6 are affected.

CWE	CWE-20
Vendor	juniper networks
Product	junos os
Published	Apr 9, 2026
Last Updated	Apr 13, 2026

Stay Ahead of the Next One

Get instant alerts for juniper networks junos os

Be the first to know when new high vulnerabilities affecting juniper networks junos os are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

None

Integrity

None

Availability

High

Affected Versions

Juniper Networks / Junos OS

25.2 < 25.2R2

Juniper Networks / Junos OS Evolved

25.2 < 25.2R2-EVO

References

NVD ↗ CVE.org ↗ EPSS Data ↗

kb.juniper.net: https://kb.juniper.net/JSA107850