A Use of Uninitialized Resource vulnerability in the Packet Forwarding Engine (PFE) of Juniper Networks Junos OS on SRX4700 devices allows an unauthenticated, network-based attacker to cause a Denial of Service (DoS).
When forwarding-options sampling is enabled, receipt of any traffic destined to the Routing Engine (RE) by the PFE line card leads to an FPC crash and restart, resulting in a Denial of Service (DoS).
Continued receipt and processing of any traffic leading to the RE by the PFE line card will create a sustained Denial of Service (DoS) condition to the PFE line card.
This issue affects Junos OS on SRX4700:
* from 24.4 before 24.4R1-S3, 24.4R2
This issue affects IPv4 and IPv6.
References
| Link | Resource |
|---|---|
| https://supportportal.juniper.net/JSA103153 | Vendor Advisory |
| https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/sampling-edit-forwarding-options.html | Technical Description |
Configurations
Configuration 1 (hide)
| AND |
|
History
23 Jan 2026, 18:36
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:juniper:junos:24.4:r1:*:*:*:*:*:* cpe:2.3:o:juniper:junos:24.4:r2:*:*:*:*:*:* cpe:2.3:h:juniper:srx4700:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos:24.4:r1-s2:*:*:*:*:*:* cpe:2.3:o:juniper:junos:24.4:-:*:*:*:*:*:* |
|
| First Time |
Juniper junos
Juniper Juniper srx4700 |
|
| References | () https://supportportal.juniper.net/JSA103153 - Vendor Advisory | |
| References | () https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/sampling-edit-forwarding-options.html - Technical Description |
09 Oct 2025, 16:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2025-10-09 16:15
Updated : 2026-01-23 18:36
NVD link : CVE-2025-59964
Mitre link : CVE-2025-59964
CVE.ORG link : CVE-2025-59964
JSON object : View
Products Affected
juniper
- srx4700
- junos
CWE
CWE-908
Use of Uninitialized Resource