Vulnerability Description
A Use of Uninitialized Resource vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX4700 devices allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS). When forwarding-options sampling is enabled, receipt of any traffic destined to the Routing Engine (RE) by the PFE line card leads to an FPC crash and restart, resulting in a Denial of Service (DoS). Continued receipt and processing of any traffic leading to the RE by the PFE line card will create a sustained Denial of Service (DoS) condition to the PFE line card. This issue affects Junos OS on SRX4700: * from 24.4 before 24.4R1-S3, 24.4R2 This issue affects IPv4 and IPv6.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos | 24.4 |
| Juniper | Srx4700 | - |
Related Weaknesses (CWE)
References
- https://supportportal.juniper.net/JSA103153Vendor Advisory
- https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/Technical Description
FAQ
What is CVE-2025-59964?
CVE-2025-59964 is a vulnerability with a CVSS score of 7.5 (HIGH). A Use of Uninitialized Resource vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX4700 devices allows an unauthenticated, network-based attacker to cause a Denial ...
How severe is CVE-2025-59964?
CVE-2025-59964 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-59964?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos, Juniper Srx4700.