CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-33797

An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker, sending a specific genuine BGP packet in an already established BGP session to reset only that session causing a Denial of Service (DoS). An attacker repeatedly sending the packet will sustain the Denial of Service (DoS).This issue affects Junos OS: * 25.2 versions before 25.2R2 This issue doesn't not affected Junos OS versions before 25.2R1. This issue affects Junos OS Evolved: * 25.2-EVO versions before 25.2R2-EVO This issue doesn't not affected Junos OS Evolved versions before 25.2R1-EVO. eBGP and iBGP are affected. IPv4 and IPv6 are affected.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 10.3%

CVSS Severity

CVSS v3 Score 7.4

References

https://kb.juniper.net/JSA107850

Products affected by CVE-2026-33797

Juniper » Junos » Version: 25.2

cpe:2.3:o:juniper:junos:25.2
Juniper » Junos Os Evolved » Version: 25.2

cpe:2.3:o:juniper:junos_os_evolved:25.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2026-33797

Products

Pricing

Contact Us