{
  "document" : {
    "aggregate_severity" : {
      "text" : "hoch"
    },
    "category" : "csaf_base",
    "csaf_version" : "2.0",
    "distribution" : {
      "tlp" : {
        "label" : "WHITE",
        "url" : "https://www.first.org/tlp/"
      }
    },
    "lang" : "de-DE",
    "notes" : [ {
      "category" : "legal_disclaimer",
      "text" : "Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen."
    }, {
      "category" : "description",
      "text" : "JUNOS ist das \"Juniper Network Operating System\", das in Juniper Appliances verwendet wird.",
      "title" : "Produktbeschreibung"
    }, {
      "category" : "summary",
      "text" : "Ein Angreifer kann mehrere Schwachstellen in Juniper JUNOS ausnutzen, um einen Denial-of-Service-Zustand herbeizuführen, vertrauliche Informationen preiszugeben und möglicherweise beliebigen Code auszuführen.",
      "title" : "Angriff"
    }, {
      "category" : "general",
      "text" : "- Sonstiges\n- UNIX",
      "title" : "Betroffene Betriebssysteme"
    } ],
    "publisher" : {
      "category" : "other",
      "contact_details" : "csaf-provider@cert-bund.de",
      "name" : "Bundesamt für Sicherheit in der Informationstechnik",
      "namespace" : "https://www.bsi.bund.de"
    },
    "references" : [ {
      "category" : "self",
      "summary" : "WID-SEC-W-2025-0777 - CSAF Version",
      "url" : "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-0777.json"
    }, {
      "category" : "self",
      "summary" : "WID-SEC-2025-0777 - Portal Version",
      "url" : "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-0777"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-An-unauthenticated-adjacent-attacker-sending-a-malformed-DHCP-packet-causes-jdhcpd-to-crash-CVE-2025-21591"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-In-DS-lite-and-NAT-senario-receipt-of-crafted-IPv4-traffic-causes-port-block-CVE-2025-21594"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-In-an-EVPN-VXLAN-scenario-specific-ARP-or-NDP-packets-cause-FPC-to-crash-CVE-2025-21595"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-and-EX-Series-MX240-MX480-MX960-QFX5120-Series-When-web-management-is-enabled-for-specific-services-an-attacker-may-cause-a-CPU-spike-by-sending-genuine-packets-to-the-device-CVE-2025-21601"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-EX2300-EX3400-EX4000-Series-QFX5k-Series-Receipt-of-a-specific-DHCP-packet-causes-FPC-crash-when-DHCP-Option-82-is-enabled-CVE-2025-30644"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-Series-Transmission-of-specific-control-traffic-sent-out-of-a-DS-Lite-tunnel-results-in-flowd-crash-CVE-2025-30645"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-malformed-LLDP-TLV-results-in-l2cpd-crash-CVE-2025-30646"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-Subscriber-login-logout-activity-will-lead-to-a-memory-leak-CVE-2025-30647"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specifically-malformed-DHCP-packet-causes-jdhcpd-process-to-crash-CVE-2025-30648"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Receipt-of-a-specific-ICMPv6-packet-causes-a-memory-overrun-leading-to-an-rpd-crash-CVE-2025-30651"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-Executing-a-specific-CLI-command-when-asregex-optimized-is-configured-causes-an-RPD-crash-CVE-2025-30652"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-LSP-flap-in-a-specific-MPLS-LSP-scenario-leads-to-RPD-crash-CVE-2025-30653"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-A-local-low-privileged-user-can-access-sensitive-information-CVE-2025-30654"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-A-specific-CLI-command-will-cause-a-RPD-crash-when-rib-sharding-and-update-threading-is-enabled-CVE-2025-30655"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-SRX-Series-Processing-of-specific-SIP-INVITE-messages-by-the-SIP-ALG-will-lead-to-an-FPC-crash-CVE-2025-30656"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-Processing-of-a-specific-BGP-update-causes-the-SRRD-process-to-crash-CVE-2025-30657"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-Series-On-devices-with-Anti-Virus-enabled-malicious-server-responses-will-cause-memory-to-leak-ultimately-causing-forwarding-to-stop-CVE-2025-30658"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-SRX-Series-A-device-configured-for-vector-routing-crashes-when-receiving-specific-traffic-CVE-2025-30659"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-MX-Series-Decapsulation-of-specific-GRE-packets-leads-to-PFE-reset-CVE-2025-30660"
    }, {
      "category" : "external",
      "summary" : "Juniper Security Bulletin vom 2025-04-09",
      "url" : "https://supportportal.juniper.net/s/article/2025-04-Security-Bulletin-Junos-OS-and-Junos-OS-Evolved-When-BGP-rib-sharding-and-update-threading-are-configured-and-a-peer-flaps-an-rpd-core-is-observed?language=en_US"
    } ],
    "source_lang" : "en-US",
    "title" : "Juniper JUNOS: Mehrere Schwachstellen",
    "tracking" : {
      "current_release_date" : "2025-04-09T22:00:00.000+00:00",
      "generator" : {
        "date" : "2025-04-10T11:20:03.755+00:00",
        "engine" : {
          "name" : "BSI-WID",
          "version" : "1.3.12"
        }
      },
      "id" : "WID-SEC-W-2025-0777",
      "initial_release_date" : "2025-04-09T22:00:00.000+00:00",
      "revision_history" : [ {
        "date" : "2025-04-09T22:00:00.000+00:00",
        "number" : "1",
        "summary" : "Initiale Fassung"
      } ],
      "status" : "final",
      "version" : "1"
    }
  },
  "product_tree" : {
    "branches" : [ {
      "branches" : [ {
        "branches" : [ {
          "category" : "product_name",
          "name" : "Juniper JUNOS",
          "product" : {
            "name" : "Juniper JUNOS",
            "product_id" : "T042690",
            "product_identification_helper" : {
              "cpe" : "cpe:/o:juniper:junos:-"
            }
          }
        }, {
          "category" : "product_version",
          "name" : "Evolved",
          "product" : {
            "name" : "Juniper JUNOS Evolved",
            "product_id" : "T042696",
            "product_identification_helper" : {
              "cpe" : "cpe:/o:juniper:junos:evolved"
            }
          }
        } ],
        "category" : "product_name",
        "name" : "JUNOS"
      } ],
      "category" : "vendor",
      "name" : "Juniper"
    } ]
  },
  "vulnerabilities" : [ {
    "cve" : "CVE-2025-21591",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-21591"
  }, {
    "cve" : "CVE-2025-21594",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-21594"
  }, {
    "cve" : "CVE-2025-21595",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-21595"
  }, {
    "cve" : "CVE-2025-21597",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-21597"
  }, {
    "cve" : "CVE-2025-21601",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-21601"
  }, {
    "cve" : "CVE-2025-30644",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30644"
  }, {
    "cve" : "CVE-2025-30645",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30645"
  }, {
    "cve" : "CVE-2025-30646",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30646"
  }, {
    "cve" : "CVE-2025-30647",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30647"
  }, {
    "cve" : "CVE-2025-30648",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30648"
  }, {
    "cve" : "CVE-2025-30649",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30649"
  }, {
    "cve" : "CVE-2025-30651",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30651"
  }, {
    "cve" : "CVE-2025-30652",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30652"
  }, {
    "cve" : "CVE-2025-30653",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30653"
  }, {
    "cve" : "CVE-2025-30654",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30654"
  }, {
    "cve" : "CVE-2025-30655",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30655"
  }, {
    "cve" : "CVE-2025-30656",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30656"
  }, {
    "cve" : "CVE-2025-30657",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30657"
  }, {
    "cve" : "CVE-2025-30658",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30658"
  }, {
    "cve" : "CVE-2025-30659",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30659"
  }, {
    "cve" : "CVE-2025-30660",
    "product_status" : {
      "known_affected" : [ "T042696", "T042690" ]
    },
    "release_date" : "2025-04-09T22:00:00.000+00:00",
    "title" : "CVE-2025-30660"
  } ]
}