CVE-2026-33797 — Vulnetix

Try Vulnetix Request Demo

CVE-2026-33797 PUBLISHED CVSS 7.400000095367432 HIGH

An Improper Input Validation vulnerability in Juniper Networks Junos OS and Junos OS Evolved allows an unauthenticated, adjacent attacker, sending a specific genuine BGP packet in an already established BGP session to reset only that session causing a Denial of Service (DoS). An attacker repeatedly sending the packet will sustain the Denial of Service (DoS).This issue affects Junos OS: * 25.2 versions before 25.2R2 This issue doesn't not affected Junos OS versions before 25.2R1. This issue affects Junos OS Evolved: * 25.2-EVO versions before 25.2R2-EVO This issue doesn't not affected Junos OS Evolved versions before 25.2R1-EVO. eBGP and iBGP are affected. IPv4 and IPv6 are affected.

Risk Scores

CVSS v3.1

7.400000095367432

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Affected Products

Vendor	Product	Versions
Juniper Networks	Junos OS Evolved	25.2, 0
Juniper Networks	Junos OS	25.2, 0

Timeline

Apr 9, 2026 CVE Published

References

…and 6 more

Open in Interactive Console →