PULSE
EN VIVO45señales / 24h
FEED
ransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Servicesransomgunra reclama a Dissinger and Dissinger Law Firm · US · Business Servicesransomplay reclama a Boston Electric and Telephone · US · Telecommunicationransomplay reclama a Wring Group · GB · Not Foundransomincransom reclama a asa-international.com · GB · Business Servicesransomplay reclama a AG Scholtes · NL · Manufacturingransomplay reclama a Andorra Life · AD · Healthcareransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomkrybit reclama a www.lagus.cz · CZ · Business Servicesransomgunra reclama a Dissinger and Dissinger Law Firm · US · Business Servicesransomplay reclama a Boston Electric and Telephone · US · Telecommunicationransomplay reclama a Wring Group · GB · Not Foundransomincransom reclama a asa-international.com · GB · Business Servicesransomplay reclama a AG Scholtes · NL · Manufacturingransomplay reclama a Andorra Life · AD · Healthcare
← Todos los CVEs
CVE Watch

CVE-2025-21590

Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability

CVSS

Sin CVSS

EPSS

1.7%

p74

KEV

13 mar 2025

Exploit Today

72

0-100

Publicado: · Última mod.:

EPSS · 30d
1.7%EPSS · 30 días1.7%
2026-06-302026-07-16
Ficha del catálogo KEV

Producto

Juniper / Junos OS

Vulnerabilidad

Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability

Añadido a KEV

13 mar 2025

Remediar antes de

3 abr 2025

Uso conocido en ransomware

No

Descripción resumida

Juniper Junos OS contains an improper isolation or compartmentalization vulnerability. This vulnerability could allows a local attacker with high privileges to inject arbitrary code.

Acción requerida

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Notas

https://supportportal.juniper.net/s/article/2025-03-Out-of-Cycle-Security-Bulletin-Junos-OS-A-local-attacker-with-shell-access-can-execute-arbitrary-code-CVE-2025-21590?language=en_US ; https://nvd.nist.gov/vuln/detail/CVE-2025-21590

CVEs relacionados
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2023-36846
99.8%
KEV80Juniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability
CVE-2023-36845
99.8%
KEV80Juniper Junos OS EX Series and SRX Series PHP External Variable Modification Vulnerability
CVE-2023-36844
99.8%
KEV80Juniper Junos OS EX Series PHP External Variable Modification Vulnerability
CVE-2023-36847
99.7%
KEV80Juniper Junos OS EX Series Missing Authentication for Critical Function Vulnerability
CVE-2020-1631
90.8%
KEV77Juniper Junos OS Path Traversal Vulnerability
CVE-2023-36851
61.6%
KEV68Juniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability