Vulnerability Description
An Uncontrolled Resource Consumption vulnerability in the HTTP daemon (httpd) of Juniper Networks Junos Space allows an unauthenticated network-based attacker flooding the device with inbound API calls to consume all resources on the system, leading to a Denial of Service (DoS). After continuously flooding the system with inbound connection requests, all available file handles become consumed, blocking access to the system via SSH and the web user interface (WebUI), resulting in a management interface DoS. A manual reboot of the system is required to restore functionality. This issue affects Junos Space: * all versions before 22.2R1 Patch V3, * from 23.1 before 23.1R1 Patch V3.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos Space | < 22.2 |
Related Weaknesses (CWE)
References
- https://supportportal.juniper.net/JSA103172Vendor Advisory
FAQ
What is CVE-2025-59975?
CVE-2025-59975 is a vulnerability with a CVSS score of 7.5 (HIGH). An Uncontrolled Resource Consumption vulnerability in the HTTP daemon (httpd) of Juniper Networks Junos Space allows an unauthenticated network-based attacker flooding the device with inbound API call...
How severe is CVE-2025-59975?
CVE-2025-59975 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2025-59975?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos Space.