Main Vulnerability Database Vulnerabilities #VU121663

Improper handling of exceptional conditions in Juniper Junos OS - CVE-2026-21906

Published: January 19, 2026

Vulnerability identifier: #VU121663

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2026-21906

CWE-ID: CWE-755

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Juniper Networks, Inc.

Affected software:
Juniper Junos OS

Detailed vulnerability description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper handling of exceptional conditions error in the packet forwarding engine (PFE) when PowerMode IPsec (PMI) and GRE performance acceleration are enabled. A remote non-authenticated attacker can cause the PFE to crash and restart by sending specially crafted ICMP packets.

How to mitigate CVE-2026-21906

Install updates from vendor's website.

Sources

https://supportportal.juniper.net/s/article/2026-01-Security-Bulletin-Junos-OS-SRX-Series-With-GRE-performance-acceleration-enabled-receipt-of-a-specific-ICMP-packet-causes-the-PFE-to-crash-CVE-2026-21906

Improper handling of exceptional conditions in Juniper Junos OS - CVE-2026-21906

Detailed vulnerability description

How to mitigate CVE-2026-21906

Sources

Please verify you're human