CVE-2025-21590
Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability
CVSS
—
No CVSS
EPSS
1.7%
p74
KEV
YES
Mar 13, 2025
Exploit Today
72
0-100
Published: — · Last modified: —
Product
Juniper / Junos OS
Vulnerability
Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability
Added to KEV
Mar 13, 2025
Remediate by
Apr 3, 2025
Known ransomware use
No
Summary description
Juniper Junos OS contains an improper isolation or compartmentalization vulnerability. This vulnerability could allows a local attacker with high privileges to inject arbitrary code.
Required action
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
Notes
https://supportportal.juniper.net/s/article/2025-03-Out-of-Cycle-Security-Bulletin-Junos-OS-A-local-attacker-with-shell-access-can-execute-arbitrary-code-CVE-2025-21590?language=en_US ; https://nvd.nist.gov/vuln/detail/CVE-2025-21590