CVE-2025-59980

An Authentication Bypass by Primary Weakness

in the FTP server of Juniper Networks Junos OS allows an unauthenticated, network-based attacker to get limited read-write access to files on the device. When the FTP server is enabled and a user named "ftp" or "anonymous" is configured, that user can login without providing the configured password and then has read-write access to their home directory.

This issue affects Junos OS:

all versions before 22.4R3-S8,
23.2 versions before 23.2R2-S3,
23.4 versions before 23.4R2.

Published: Oct 9, 2025
Updated: Nov 16, 2025
CVE: CVE-2025-59980
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.5
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWEs:

CWE-305

Affected Software
References

Software	From	Fixed in
juniper / junos	-	22.4
juniper / junos	22.4	22.4.x
juniper / junos	22.4-r1	22.4-r1.x
juniper / junos	22.4-r1-s1	22.4-r1-s1.x
juniper / junos	22.4-r1-s2	22.4-r1-s2.x
juniper / junos	22.4-r2	22.4-r2.x
juniper / junos	22.4-r2-s1	22.4-r2-s1.x
juniper / junos	22.4-r2-s2	22.4-r2-s2.x
juniper / junos	22.4-r3	22.4-r3.x
juniper / junos	22.4-r3-s1	22.4-r3-s1.x
juniper / junos	22.4-r3-s2	22.4-r3-s2.x
juniper / junos	22.4-r3-s3	22.4-r3-s3.x
juniper / junos	22.4-r3-s4	22.4-r3-s4.x
juniper / junos	22.4-r3-s5	22.4-r3-s5.x
juniper / junos	22.4-r3-s6	22.4-r3-s6.x
juniper / junos	22.4-r3-s7	22.4-r3-s7.x
juniper / junos	23.2	23.2.x
juniper / junos	23.2-r1	23.2-r1.x
juniper / junos	23.2-r1-s1	23.2-r1-s1.x
juniper / junos	23.2-r1-s2	23.2-r1-s2.x
juniper / junos	23.2-r2	23.2-r2.x
juniper / junos	23.2-r2-s1	23.2-r2-s1.x
juniper / junos	23.2-r2-s2	23.2-r2-s2.x
juniper / junos	23.4	23.4.x
juniper / junos	23.4-r1	23.4-r1.x
juniper / junos	23.4-r1-s1	23.4-r1-s1.x
juniper / junos	23.4-r1-s2	23.4-r1-s2.x

https://supportportal.juniper.net/JSA103167

Vulnerability Database

319,592

CVE-2025-59980

Deep Security Visibility Without the Complexity