Vulnerability Database

320,453

Total vulnerabilities in the database

CVE-2026-21914

An Improper Locking vulnerability in the GTP plugin of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (Dos).

If an SRX Series device receives a specifically malformed GPRS Tunnelling Protocol (GTP) Modify Bearer Request message, a lock is acquired and never released. This results in other threads not being able to acquire a lock themselves, causing a watchdog timeout leading to FPC crash and restart. This issue leads to a complete traffic outage until the device has automatically recovered.

This issue affects Junos OS on SRX Series:

  • all versions before 22.4R3-S8,
  • 23.2 versions before 23.2R2-S5,
  • 23.4 versions before 23.4R2-S6,
  • 24.2 versions before 24.2R2-S3,
  • 24.4 versions before 24.4R2-S2,
  • 25.2 versions before 25.2R1-S1, 25.2R2.
  • Published: Jan 15, 2026
  • Updated: Jan 16, 2026
  • CVE: CVE-2026-21914
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.5
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWEs:

Software From Fixed in
juniper / junos - 22.4
juniper / junos 22.4 22.4.x
juniper / junos 22.4-r1 22.4-r1.x
juniper / junos 22.4-r1-s1 22.4-r1-s1.x
juniper / junos 22.4-r1-s2 22.4-r1-s2.x
juniper / junos 22.4-r2 22.4-r2.x
juniper / junos 22.4-r2-s1 22.4-r2-s1.x
juniper / junos 22.4-r2-s2 22.4-r2-s2.x
juniper / junos 22.4-r3 22.4-r3.x
juniper / junos 22.4-r3-s1 22.4-r3-s1.x
juniper / junos 22.4-r3-s2 22.4-r3-s2.x
juniper / junos 22.4-r3-s3 22.4-r3-s3.x
juniper / junos 22.4-r3-s4 22.4-r3-s4.x
juniper / junos 22.4-r3-s5 22.4-r3-s5.x
juniper / junos 22.4-r3-s6 22.4-r3-s6.x
juniper / junos 22.4-r3-s7 22.4-r3-s7.x
juniper / junos 23.2 23.2.x
juniper / junos 23.2-r1 23.2-r1.x
juniper / junos 23.2-r1-s1 23.2-r1-s1.x
juniper / junos 23.2-r1-s2 23.2-r1-s2.x
juniper / junos 23.2-r2 23.2-r2.x
juniper / junos 23.2-r2-s1 23.2-r2-s1.x
juniper / junos 23.2-r2-s2 23.2-r2-s2.x
juniper / junos 23.2-r2-s3 23.2-r2-s3.x
juniper / junos 23.2-r2-s4 23.2-r2-s4.x
juniper / junos 23.4 23.4.x
juniper / junos 23.4-r1 23.4-r1.x
juniper / junos 23.4-r1-s1 23.4-r1-s1.x
juniper / junos 23.4-r1-s2 23.4-r1-s2.x
juniper / junos 23.4-r2 23.4-r2.x
juniper / junos 23.4-r2-s1 23.4-r2-s1.x
juniper / junos 23.4-r2-s2 23.4-r2-s2.x
juniper / junos 23.4-r2-s3 23.4-r2-s3.x
juniper / junos 23.4-r2-s4 23.4-r2-s4.x
juniper / junos 23.4-r2-s5 23.4-r2-s5.x
juniper / junos 24.2 24.2.x
juniper / junos 24.2-r1 24.2-r1.x
juniper / junos 24.2-r1-s1 24.2-r1-s1.x
juniper / junos 24.2-r1-s2 24.2-r1-s2.x
juniper / junos 24.2-r2 24.2-r2.x
juniper / junos 24.2-r2-s1 24.2-r2-s1.x
juniper / junos 24.2-r2-s2 24.2-r2-s2.x
juniper / junos 24.4 24.4.x
juniper / junos 24.4-r1 24.4-r1.x
juniper / junos 24.4-r1-s2 24.4-r1-s2.x
juniper / junos 24.4-r1-s3 24.4-r1-s3.x
juniper / junos 24.4-r2 24.4-r2.x
juniper / junos 24.4-r2-s1 24.4-r2-s1.x
juniper / junos 25.2 25.2.x
juniper / junos 25.2-r1 25.2-r1.x
juniper / junos 25.2-r2 25.2-r2.x