HarborGuard / CVE
Back to search
HIGHCVE-2026-21920Published Modified CNA juniper

CVE-2026-21920: Junos OS: SRX Series: If a specific request is processed by the DNS subsystem flowd will crash

An Unchecked Return Value vulnerability in the DNS module of Juniper Networks Junos OS on SRX Series allows an unauthenticated, network-based attacker to cause a Denial-of-Service (DoS). If an SRX Series device configured for DNS processing, receives a specifically formatted DNS request flowd will crash and restart, which causes a service interruption until the process has recovered. This issue affects Junos OS on SRX Series: * 23.4 versions before 23.4R2-S5, * 24.2 versions before 24.2R2-S1, * 24.4 versions before 24.4R2. This issue does not affect Junos OS versions before 23.4R1.

Metrics

CVSS v4.0
8.7
Severity
HIGH
Fixed in
0
Affected Products
1

Fix available

023.4R2-S524.2R2-S124.4R2
Affected packages
  • Juniper Networks / Junos OS
    < 23.4R2-S5 (from 23.4) · < 24.2R2-S1 (from 24.2) · < 24.4R2 (from 24.4)
    Fixed in 0
CVSS Vector
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:Y/R:A/RE:M
References