{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-33797", "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "state": "PUBLISHED", "assignerShortName": "juniper", "dateReserved": "2026-03-23T19:46:13.673Z", "datePublished": "2026-04-09T21:31:22.902Z", "dateUpdated": "2026-04-23T20:08:35.655Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Junos OS", "vendor": "Juniper Networks", "versions": [{"lessThan": "25.2R2", "status": "affected", "version": "25.2", "versionType": "semver"}, {"lessThan": "25.2R1", "status": "unaffected", "version": "0", "versionType": "semver"}]}, {"defaultStatus": "unaffected", "modules": ["bgp"], "product": "Junos OS Evolved", "vendor": "Juniper Networks", "versions": [{"lessThan": "25.2R2-EVO", "status": "affected", "version": "25.2", "versionType": "semver"}, {"lessThan": "25.2R1-EVO", "status": "unaffected", "version": "0", "versionType": "semver"}]}], "configurations": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<tt>&nbsp; [ protocols bgp group &lt;group&gt; neighbor ]</tt><br>"}], "value": "[ protocols bgp group <group> neighbor ]"}], "datePublic": "2026-04-08T16:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker, sending a specific genuine BGP packet in an already established BGP session to reset only that session causing a Denial of Service (DoS).<br><br>An attacker repeatedly sending the packet will sustain the Denial of Service (DoS).<p>This issue affects Junos OS:</p><ul><li>25.2 versions before 25.2R2</li></ul>This issue does not affect Junos OS versions before 25.2R1.<br><br>This issue affects Junos OS Evolved: <br><ul><li>25.2-EVO versions before 25.2R2-EVO</li></ul>This issue does not affect Junos OS Evolved versions before 25.2R1-EVO.<br><br>eBGP and iBGP are affected.<br>IPv4 and IPv6 are affected.&nbsp;<br>"}], "value": "An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker, sending a specific genuine BGP packet in an already established BGP session to reset only that session causing a Denial of Service (DoS).\n\nAn attacker repeatedly sending the packet will sustain the Denial of Service (DoS).This issue affects Junos OS:\n\n * 25.2 versions before 25.2R2\n\n\nThis issue does not affect Junos OS versions before 25.2R1.\n\nThis issue affects Junos OS Evolved: \n * 25.2-EVO versions before 25.2R2-EVO\n\n\nThis issue does not affect Junos OS Evolved versions before 25.2R1-EVO.\n\neBGP and iBGP are affected.\nIPv4 and IPv6 are affected."}], "exploits": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"cvssV4_0": {"Automatable": "YES", "Recovery": "AUTOMATIC", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "ADJACENT", "baseScore": 7.1, "baseSeverity": "HIGH", "privilegesRequired": "NONE", "providerUrgency": "GREEN", "subAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "CONCENTRATED", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:Y/R:A/V:C/RE:M/U:Green", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "MODERATE"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-20", "description": "CWE-20 Improper Input Validation", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "shortName": "juniper", "dateUpdated": "2026-04-23T20:08:35.655Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://kb.juniper.net/JSA107850"}, {"tags": ["vendor-advisory"], "url": "https://supportportal.juniper.net/JSA107850"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "The following software releases have been updated to resolve this specific issue:<br>Junos OS:&nbsp;25.2R2,&nbsp;25.4R1, and all subsequent releases.<br>Junos OS Evolved: 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases."}], "value": "The following software releases have been updated to resolve this specific issue:\nJunos OS:\u00a025.2R2,\u00a025.4R1, and all subsequent releases.\nJunos OS Evolved: 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases."}], "source": {"advisory": "JSA107850", "defect": ["1893316"], "discovery": "INTERNAL"}, "title": "Junos OS and Junos OS Evolved: An attacker sending a specific genuine BGP packet causes a BGP reset", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "There are no known workarounds for this issue.<br>"}], "value": "There are no known workarounds for this issue."}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-33797", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-13T17:40:25.675431Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-13T18:06:19.434Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-33797", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-13T17:40:25.675431Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-13T17:58:31.693Z"}}], "cna": {"title": "Junos OS and Junos OS Evolved: An attacker sending a specific genuine BGP packet causes a BGP reset", "source": {"defect": ["1893316"], "advisory": "JSA107850", "discovery": "INTERNAL"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 7.4, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "AUTOMATIC", "baseScore": 7.1, "Automatable": "YES", "attackVector": "ADJACENT", "baseSeverity": "HIGH", "valueDensity": "CONCENTRATED", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:Y/R:A/V:C/RE:M/U:Green", "providerUrgency": "GREEN", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "LOW", "vulnAvailabilityImpact": "HIGH", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "vulnerabilityResponseEffort": "MODERATE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Juniper Networks", "product": "Junos OS", "versions": [{"status": "affected", "version": "25.2", "lessThan": "25.2R2", "versionType": "semver"}, {"status": "unaffected", "version": "0", "lessThan": "25.2R1", "versionType": "semver"}], "defaultStatus": "unaffected"}, {"vendor": "Juniper Networks", "modules": ["bgp"], "product": "Junos OS Evolved", "versions": [{"status": "affected", "version": "25.2", "lessThan": "25.2R2-EVO", "versionType": "semver"}, {"status": "unaffected", "version": "0", "lessThan": "25.2R1-EVO", "versionType": "semver"}], "defaultStatus": "unaffected"}], "exploits": [{"lang": "en", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability.", "supportingMedia": [{"type": "text/html", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability.", "base64": false}]}], "solutions": [{"lang": "en", "value": "The following software releases have been updated to resolve this specific issue:\nJunos OS:\u00a025.2R2,\u00a025.4R1, and all subsequent releases.\nJunos OS Evolved: 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases.", "supportingMedia": [{"type": "text/html", "value": "The following software releases have been updated to resolve this specific issue:<br>Junos OS:&nbsp;25.2R2,&nbsp;25.4R1, and all subsequent releases.<br>Junos OS Evolved: 25.2R2-EVO, 25.4R1-EVO, and all subsequent releases.", "base64": false}]}], "datePublic": "2026-04-08T16:00:00.000Z", "references": [{"url": "https://kb.juniper.net/JSA107850", "tags": ["vendor-advisory"]}, {"url": "https://supportportal.juniper.net/JSA107850", "tags": ["vendor-advisory"]}], "workarounds": [{"lang": "en", "value": "There are no known workarounds for this issue.", "supportingMedia": [{"type": "text/html", "value": "There are no known workarounds for this issue.<br>", "base64": false}]}], "x_generator": {"engine": "Vulnogram 0.1.0-dev"}, "descriptions": [{"lang": "en", "value": "An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker, sending a specific genuine BGP packet in an already established BGP session to reset only that session causing a Denial of Service (DoS).\n\nAn attacker repeatedly sending the packet will sustain the Denial of Service (DoS).This issue affects Junos OS:\n\n * 25.2 versions before 25.2R2\n\n\nThis issue does not affect Junos OS versions before 25.2R1.\n\nThis issue affects Junos OS Evolved: \n * 25.2-EVO versions before 25.2R2-EVO\n\n\nThis issue does not affect Junos OS Evolved versions before 25.2R1-EVO.\n\neBGP and iBGP are affected.\nIPv4 and IPv6 are affected.", "supportingMedia": [{"type": "text/html", "value": "An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker, sending a specific genuine BGP packet in an already established BGP session to reset only that session causing a Denial of Service (DoS).<br><br>An attacker repeatedly sending the packet will sustain the Denial of Service (DoS).<p>This issue affects Junos OS:</p><ul><li>25.2 versions before 25.2R2</li></ul>This issue does not affect Junos OS versions before 25.2R1.<br><br>This issue affects Junos OS Evolved: <br><ul><li>25.2-EVO versions before 25.2R2-EVO</li></ul>This issue does not affect Junos OS Evolved versions before 25.2R1-EVO.<br><br>eBGP and iBGP are affected.<br>IPv4 and IPv6 are affected.&nbsp;<br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-20", "description": "CWE-20 Improper Input Validation"}]}], "configurations": [{"lang": "en", "value": "[ protocols bgp group <group> neighbor ]", "supportingMedia": [{"type": "text/html", "value": "<tt>&nbsp; [ protocols bgp group &lt;group&gt; neighbor ]</tt><br>", "base64": false}]}], "providerMetadata": {"orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "shortName": "juniper", "dateUpdated": "2026-04-23T20:08:35.655Z"}}}, "cveMetadata": {"cveId": "CVE-2026-33797", "state": "PUBLISHED", "dateUpdated": "2026-04-23T20:08:35.655Z", "dateReserved": "2026-03-23T19:46:13.673Z", "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "datePublished": "2026-04-09T21:31:22.902Z", "assignerShortName": "juniper"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:juniper:junos:25.2:-:*:*:*:*:*:*", "matchCriteriaId": "1B7572BB-9C77-4214-9C5F-CC83C7B93E37", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:25.2:r1:*:*:*:*:*:*", "matchCriteriaId": "CAADBF98-38BE-40E2-AF1B-9077DCED0809", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:25.2:r1-s1:*:*:*:*:*:*", "matchCriteriaId": "558F0A4C-0C72-4BF1-B2DE-C0D3BFD54BCD", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos:25.2:r1-s2:*:*:*:*:*:*", "matchCriteriaId": "127FE528-AB27-4B18-AF3B-1BE7C0AEEE20", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:25.2:-:*:*:*:*:*:*", "matchCriteriaId": "DAF96553-DB70-4DFA-8658-306A7477DD06", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:25.2:r1:*:*:*:*:*:*", "matchCriteriaId": "83C415EF-E87B-4259-A836-59B3A9C3914B", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:25.2:r1-s1:*:*:*:*:*:*", "matchCriteriaId": "AFD32E67-9D8D-437D-96BC-CA97A1F686BA", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:25.2:r1-s2:*:*:*:*:*:*", "matchCriteriaId": "0E5D9967-1B53-427B-9B23-77DC399F3D71", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker, sending a specific genuine BGP packet in an already established BGP session to reset only that session causing a Denial of Service (DoS).\n\nAn attacker repeatedly sending the packet will sustain the Denial of Service (DoS).This issue affects Junos OS:\n\n * 25.2 versions before 25.2R2\n\n\nThis issue does not affect Junos OS versions before 25.2R1.\n\nThis issue affects Junos OS Evolved: \n * 25.2-EVO versions before 25.2R2-EVO\n\n\nThis issue does not affect Junos OS Evolved versions before 25.2R1-EVO.\n\neBGP and iBGP are affected.\nIPv4 and IPv6 are affected."}], "id": "CVE-2026-33797", "lastModified": "2026-04-23T21:16:05.677", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "ADJACENT_NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.4, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 4.0, "source": "sirt@juniper.net", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "YES", "Recovery": "AUTOMATIC", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "ADJACENT", "availabilityRequirement": "NOT_DEFINED", "baseScore": 7.1, "baseSeverity": "HIGH", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "GREEN", "subAvailabilityImpact": "LOW", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "CONCENTRATED", "vectorString": "CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:C/RE:M/U:Green", "version": "4.0", "vulnAvailabilityImpact": "HIGH", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "MODERATE"}, "source": "sirt@juniper.net", "type": "Secondary"}]}, "published": "2026-04-09T22:16:29.547", "references": [{"source": "sirt@juniper.net", "tags": ["Vendor Advisory"], "url": "https://kb.juniper.net/JSA107850"}, {"source": "sirt@juniper.net", "url": "https://supportportal.juniper.net/JSA107850"}], "sourceIdentifier": "sirt@juniper.net", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "sirt@juniper.net", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[25.2,25.2R2)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,25.2R1)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Junos OS", "source": "cna", "vendor": "Juniper Networks"}, "product": "junos_os", "vendor": "juniper_networks"}, {"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[25.2,25.2R2-EVO)"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "generic", "value": "[0,25.2R1-EVO)"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Junos OS Evolved", "source": "cna", "vendor": "Juniper Networks"}, "product": "junos_os_evolved", "vendor": "juniper_networks"}], "analysis": {"en": {"generated_at": "2026-04-28T21:39:08.383847+00:00", "value": {"mitigation_remediation": ["Apply the latest Junos OS or Junos OS Evolved releases (25.2R2, 25.4R1, or later) that address the issue.", "Configure BGP session authentication to ensure only authorized peers can establish routes.", "Restrict BGP neighbors to trusted networks and review access control lists on interfaces that connect to those neighbors."], "summary": {"action": "Immediate Patch", "impact": "Denial of Service (DoS)"}, "threat_synthesis": {"affected_systems": "Juniper Networks Junos OS and Junos OS Evolved are impacted. For Junos OS the flaw exists in all releases prior to 25.2R2; the 25.2R2, 25.4R1, and all newer releases contain the fix. For Junos OS Evolved, the issue exists in all releases prior to 25.2R2-EVO; the 25.2R2-EVO, 25.4R1-EVO, and all later releases resolve the vulnerability. Both eBGP and iBGP sessions over IPv4 and IPv6 are affected; versions earlier than 25.2R1 (Junos OS) or 25.2R1-EVO (Junos OS Evolved) are not affected.", "description_and_impact": "An improper input validation flaw in Juniper Networks Junos OS and Junos OS Evolved enables an unauthenticated adjacent attacker to send a specific genuine BGP packet over an established BGP session. The packet resets only that session, leading to a denial of service for the routes exchanged over the affected link. Repeatedly sending the packet can sustain the outage until the session reestablishes or the device restarts.", "risk_and_exploitability": "The CVSS score of 7.1 reflects moderate to high severity. Because the exploit requires only access to a pre\u2011established BGP session and no authentication, the threat is realistic for attackers who can become an adjacent BGP neighbor on the network. The EPSS score of < 1% indicates a very low but nonzero probability of exploitation in observed traffic. The vulnerability is not listed in CISA KEV. However, the lack of a workaround and the potential for widespread service interruption make the risk significant. Attackers can trigger repeated BGP resets to sustain a denial of service, compromising network reliability."}}}}, "created": "2026-04-10T08:37:01.350277+00:00", "updated": "2026-04-28T21:45:26.146262+00:00", "vendors": ["juniper_networks", "juniper_networks$PRODUCT$junos_os", "juniper_networks$PRODUCT$junos_os_evolved"]}