CVE-2025-52952 — MEDIUM (6.5)

Q: How severe is CVE-2025-52952?

CVE-2025-52952 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-52952?

Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos, Juniper 2X100Ge \+ 4X10Ge Mpc5E, Juniper 2X100Ge \+ 4X10Ge Mpc5Eq, Juniper 2X100Ge \+ 8X10Ge Mpc4E, Juniper 32X10Ge Mpc4E.

Vulnerability Description

An Out-of-bounds Write vulnerability in the connectivity fault management (CFM) daemon of Juniper Networks Junos OS on MX Series with MPC-BUILTIN, MPC1 through MPC9 line cards allows an unauthenticated adjacent attacker to send a malformed packet to the device, leading to an FPC crash and restart, resulting in a Denial of Service (DoS). Continued receipt and processing of this packet will create a sustained Denial of Service (DoS) condition. This issue affects Juniper Networks: Junos OS: * All versions before 22.2R3-S1, * from 22.4 before 22.4R2. This feature is not enabled by default.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Juniper	Junos	< 22.2
Juniper	2X100Ge \+ 4X10Ge Mpc5E	-
Juniper	2X100Ge \+ 4X10Ge Mpc5Eq	-
Juniper	2X100Ge \+ 8X10Ge Mpc4E	-
Juniper	32X10Ge Mpc4E	-
Juniper	6X40Ge \+ 24X10Ge Mpc5E	-
Juniper	6X40Ge \+ 24X10Ge Mpc5Eq	-
Juniper	Mpc1	-
Juniper	Mpc1 Q	-
Juniper	Mpc1E	-
Juniper	Mpc1E Q	-
Juniper	Mpc2	-
Juniper	Mpc2 Eq	-
Juniper	Mpc2 Q	-
Juniper	Mpc2E	-
Juniper	Mpc2E Eq	-
Juniper	Mpc2E Ng	-
Juniper	Mpc2E Ng Q	-
Juniper	Mpc2E P	-
Juniper	Mpc2E Q	-

Related Weaknesses (CWE)

CWE-787

References

https://supportportal.juniper.net/JSA100058Vendor Advisory
https://www.juniper.net/documentation/us/en/software/junos/network-mgmt/topics/tProduct

FAQ

What is CVE-2025-52952?

CVE-2025-52952 is a vulnerability with a CVSS score of 6.5 (MEDIUM). An Out-of-bounds Write vulnerability in the connectivity fault management (CFM) daemon of Juniper Networks Junos OS on MX Series with MPC-BUILTIN, MPC1 through MPC9 line cards allows an unauthenticate...

How severe is CVE-2025-52952?

CVE-2025-52952 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-52952?

Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos, Juniper 2X100Ge \+ 4X10Ge Mpc5E, Juniper 2X100Ge \+ 4X10Ge Mpc5Eq, Juniper 2X100Ge \+ 8X10Ge Mpc4E, Juniper 32X10Ge Mpc4E.