Vulnerability Database

319,592

Total vulnerabilities in the database

CVE-2025-59967

A NULL Pointer Dereference vulnerability in the PFE management daemon (evo-pfemand) of Juniper Networks Junos OS Evolved on ACX7024, ACX7024X, ACX7100-32C, ACX7100-48L, ACX7348, ACX7509 devices allows an unauthenticated, adjacent attacker to cause a

Denial-of-Service (DoS).

Whenever specific valid multicast traffic is received on any layer 3 interface the evo-pfemand process crashes and restarts.

Continued receipt of specific valid multicast traffic results in a sustained Denial of Service (DoS) attack. This issue affects Junos OS Evolved on ACX7024, ACX7024X, ACX7100-32C, ACX7100-48L, ACX7348, ACX7509:

from 23.2R2-EVO before 23.2R2-S4-EVO,
from 23.4R1-EVO before 23.4R2-EVO.

This issue affects IPv4 and IPv6.

This issue does not affect Junos OS Evolved ACX7024, ACX7024X, ACX7100-32C, ACX7100-48L, ACX7348, ACX7509 versions before 23.2R2-EVO.

Published: Oct 9, 2025
Updated: Nov 16, 2025
CVE: CVE-2025-59967
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWEs:

CWE-476

Affected Software
References

Software	From	Fixed in
juniper / junos_os_evolved	23.2-r2	23.2-r2.x
juniper / junos_os_evolved	23.2-r2-s1	23.2-r2-s1.x
juniper / junos_os_evolved	23.2-r2-s2	23.2-r2-s2.x
juniper / junos_os_evolved	23.2-r2-s3	23.2-r2-s3.x
juniper / junos_os_evolved	23.4-r1	23.4-r1.x
juniper / junos_os_evolved	23.4-r1-s1	23.4-r1-s1.x
juniper / junos_os_evolved	23.4-r1-s2	23.4-r1-s2.x

https://supportportal.juniper.net/JSA103156

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo