CVE-2025-21599

CVE-2025-21599 is a Missing Release of Memory after Effective Lifetime vulnerability (CWE-401) in the Juniper Tunnel Driver (jtd) component of Juniper Networks Junos OS Evolved. It affects systems configured with IPv6 support running versions from 22.4-EVO before 22.4R3-S5-EVO, 23.2-EVO before 23.2R2-S2-EVO, 23.4-EVO before 23.4R2-S2-EVO, 24.2-EVO before 24.2R1-S2-EVO and 24.2R2-EVO. Versions of Junos OS Evolved prior to 22.4R1-EVO are not affected. The vulnerability has a CVSS v3.1 base score of 7.5 (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).

An unauthenticated network-based attacker can exploit this vulnerability by sending specifically malformed IPv6 packets destined to the device. Receipt and processing of these packets prevents kernel memory from being freed after its effective lifetime, resulting in progressive memory exhaustion. This leads to a system crash and Denial of Service (DoS), with continuous packet transmission sustaining the DoS condition.

Mitigation details, including available patches and precise affected configurations, are provided in the Juniper Networks security advisory JSA92869 at https://supportportal.juniper.net/JSA92869.