A Missing Synchronization vulnerability in the flow collector handler of Juniper Networks Junos OS Evolved on QFX Series allows an adjacent, unauthenticated attacker to cause a Denial-of-Service (DoS).
When the reachability of an sFlow collector changes, the corresponding next-hop entry is updated. If this update occurs simultaneously with the sFlow thread accessing the next-hop data (which is outside the attackers control), it causes the evo-pfemand process to crash, impacting all traffic forwarding until the automatic process restart has completed.
This issue affects Junos OS Evolved on QFX Series:
* all 23.2 versions,
* 23.4 versions before 23.4R2-S7-EVO,
* 24.2 versions before 24.2R2-S5-EVO,
* 24.4 versions before 24.4R2-S3-EVO,
* 25.2 versions before 25.2R2-EVO.
References
| Link | Resource |
|---|---|
| https://supportportal.juniper.net/JSA110089 | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
13 Jul 2026, 20:23
| Type | Values Removed | Values Added |
|---|---|---|
| First Time |
Juniper qfx5130
Juniper qfx5240 Juniper Juniper qfx5200 Juniper qfx10008 Juniper qfx5241 Juniper qfx5110 Juniper qfx5230-64cd Juniper qfx5140 Juniper qfx5220 Juniper junos Os Evolved Juniper qfx5210 Juniper qfx10016 Juniper qfx5700 Juniper qfx5250 Juniper qfx5120 |
|
| CPE | cpe:2.3:o:juniper:junos_os_evolved:24.4:r2:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.2:r2-s3:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r2-s4:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5140:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r2-s2:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.4:r1-s3:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.2:r2-s1:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r2-s3:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.2:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5230-64cd:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.2:r2-s4:*:*:*:*:*:* cpe:2.3:h:juniper:qfx10016:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.4:-:*:*:*:*:*:* cpe:2.3:h:juniper:qfx10008:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.2:r1:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.4:r1-s2:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5241:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5120:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.2:r2:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r2-s5:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5250:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5240:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.2:r1-s2:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r2-s1:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.4:r2-s2:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r2-s6:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r1-s1:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.2:-:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r1-s2:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r2:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.2:r2-s2:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.4:r1:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:24.4:r2-s1:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5700:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:-:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:25.2:r1:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:25.2:r1-s1:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5110:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:25.2:r1-s2:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5130:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5210:-:*:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5220:-:*:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:23.4:r1:*:*:*:*:*:* cpe:2.3:o:juniper:junos_os_evolved:25.2:-:*:*:*:*:*:* cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:* |
|
| References | () https://supportportal.juniper.net/JSA110089 - Vendor Advisory |
09 Jul 2026, 22:17
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2026-07-09 22:17
Updated : 2026-07-13 20:23
NVD link : CVE-2026-57029
Mitre link : CVE-2026-57029
CVE.ORG link : CVE-2026-57029
JSON object : View
Products Affected
juniper
- qfx10008
- qfx5200
- qfx5140
- qfx5130
- qfx5120
- qfx5250
- qfx5210
- qfx5241
- qfx5230-64cd
- qfx5110
- junos_os_evolved
- qfx10016
- qfx5700
- qfx5240
- qfx5220
CWE
CWE-820
Missing Synchronization
