Vulnerability Details CVE-2025-52952
An Out-of-bounds Write vulnerability in the connectivity fault management (CFM) daemon of Juniper Networks Junos OS on MX Series with MPC-BUILTIN, MPC1 through MPC9 line cards allows an unauthenticated adjacent attacker to send a malformed packet to the device, leading to an FPC crash and restart, resulting in a Denial of Service (DoS).
Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition.
This issue affects Juniper Networks:
Junos OS:
* All versions before 22.2R3-S1,
* from 22.4 before 22.4R2.
This feature is not enabled by default.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 9.5%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2025-52952
-
cpe:2.3:h:juniper:2x100ge_+_4x10ge_mpc5e:-
-
cpe:2.3:h:juniper:2x100ge_+_4x10ge_mpc5eq:-
-
cpe:2.3:h:juniper:2x100ge_+_8x10ge_mpc4e:-
-
cpe:2.3:h:juniper:32x10ge_mpc4e:-
-
cpe:2.3:h:juniper:6x40ge_+_24x10ge_mpc5e:-
-
cpe:2.3:h:juniper:6x40ge_+_24x10ge_mpc5eq:-
-
cpe:2.3:h:juniper:mpc1:-
-
cpe:2.3:h:juniper:mpc1_q:-
-
cpe:2.3:h:juniper:mpc1e:-
-
cpe:2.3:h:juniper:mpc1e_q:-
-
cpe:2.3:h:juniper:mpc2:-
-
cpe:2.3:h:juniper:mpc2_eq:-
-
cpe:2.3:h:juniper:mpc2_q:-
-
cpe:2.3:h:juniper:mpc2e:-
-
cpe:2.3:h:juniper:mpc2e_eq:-
-
cpe:2.3:h:juniper:mpc2e_ng:-
-
cpe:2.3:h:juniper:mpc2e_ng_q:-
-
cpe:2.3:h:juniper:mpc2e_p:-
-
cpe:2.3:h:juniper:mpc2e_q:-
-
cpe:2.3:h:juniper:mpc3e-3d-ng-q:-
-
cpe:2.3:h:juniper:mpc3e-3d-ng:-
-
cpe:2.3:h:juniper:mpc3e:-
-
cpe:2.3:h:juniper:mpc6e:-
-
cpe:2.3:h:juniper:mpc7e-10g:-
-
cpe:2.3:h:juniper:mpc7e-mrate:-
-
cpe:2.3:h:juniper:mpc8e:-
-
cpe:2.3:h:juniper:mpc9e:-
-
cpe:2.3:h:juniper:mx2008:-
-
cpe:2.3:h:juniper:mx2010:-
-
cpe:2.3:h:juniper:mx2020:-
-
cpe:2.3:h:juniper:mx240:-
-
cpe:2.3:h:juniper:mx480:-
-
cpe:2.3:h:juniper:mx960:-
-
cpe:2.3:o:juniper:junos:*
-
cpe:2.3:o:juniper:junos:22.2
-
cpe:2.3:o:juniper:junos:22.4