🔐 CVE Alert

CVE-2026-57031

MEDIUM 4.7

Junos OS: MX Series: For subscribers configured on static interfaces, input filters are not in effect

CVSS Score
4.7
EPSS Score
0.2%
EPSS Percentile
15th

An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on MX Series allows adjacent subscribers to bypass configured firewall filters. On MX Series devices with MPC10/11, LC4800/9600, and MX304 with subscribers configured on static interfaces, ingress firewall filters are not enforced, so that neither protocol level nor upstream bandwidth limitation are in effect.  This issue affects Junos OS on MX with MPC10/11, LC4800/9600/4802, and MX304: * 23.2 versions from 23.2R2-S1 before 23.2R2-S7, * 23.4 versions from 23.4R2 before 23.4R2-S7, * 24.2 versions before 24.2R2-S3, * 24.4 versions before 24.4R2-S2, * 25.2 versions before 25.2R2.

CWE CWE-754
Vendor juniper networks
Product junos os
Published Jul 9, 2026
Last Updated Jul 10, 2026
Stay Ahead of the Next One

Get instant alerts for juniper networks junos os

Be the first to know when new medium vulnerabilities affecting juniper networks junos os are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Attack Vector
Adjacent
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
None
Integrity
Low
Availability
None

Affected Versions

Juniper Networks / Junos OS
23.2R2-S1 < 23.2R2-S7 23.4R2 < 23.4R2-S7 24.2 < 24.2R2-S3 24.4 < 24.4R2-S2 25.2 < 25.2R2

References

NVD ↗ CVE.org ↗ EPSS Data ↗
supportportal.juniper.net: https://supportportal.juniper.net/JSA110091