Back to overview

CVE-2026-33801

MEDIUM
6.5
CVSS 3.1
Description
An Improper Check for Unusual or Exceptional Conditions vulnerability in the routing protocol daemon (RPD) of Juniper Networks Junos OS and Junos OS Evolved allows an adjacent, unauthenticated attacker sending a specific BGP update over an established BGP session to cause a Denial-of-Service (DoS). Upon receipt of a specifically malformed non-inet/inet6 unicast BGP update, an RPD crash and restart is triggered, which will cause a complete service outage until routing has reconverged. The rpd crash occurs before the update can be readvertised, so there is no downstream propagation. This issue affects: * Junos OS versions 25.2 before 25.2R2; * Junos OS Evolved versions 25.2 before 25.2R2-EVO. This issue doesn't affect Junos OS versions before 25.2R1 nor Junos OS Evolved versions before 25.2R1-EVO.

Metadata

CVE ID
CVE-2026-33801
State
PUBLISHED
Assigner
juniper
Reserved
2026-03-23 19:46 UTC
Published
2026-07-09 21:03 UTC
Last updated
2026-07-09 21:03 UTC
Primary CWE
CWE-754
CWE-754 Improper Check for Unusual or Exceptional Conditions
Vendor / Product
Juniper Networks / Junos OS
Sources
cve.org  ·  NVD

Severity & Metrics

6.5 MEDIUM CVSS 3.1
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Affected products (2)
VendorProductPlatformVersions
Juniper Networks Junos OS 25.2 < 25.2R2
Juniper Networks Junos OS Evolved 25.2 < 25.2R2-EVO
Weakness (CWE)
CWESourceDescription
CWE-754 cna CWE-754 Improper Check for Unusual or Exceptional Conditions
CVSS scores (2)
ScoreSeverityVersionSourceVector
7.1 HIGH 4.0 cna CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:Y/R:A/RE:M
6.5 MEDIUM 3.1 cna CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Back to overview