Use of multiple resources with duplicate identifier in Junos OS - CVE-2026-57024
Published: July 8, 2026
Junos OS
Detailed vulnerability description
The vulnerability allows a remote non-authenticated attacker to perform service disruption.
The vulnerability exists due to use of multiple resources with duplicate identifier error in the IKE daemon (iked). A remote non-authenticated attacker can cause a Denial-of-Service (DoS).
On an MX with SPC3 and SRX devices configured for VPN service, when a large number of VPN negotiations fail a peer index rollover will eventually occur.
As a result, new peers are assigned index values that are already in use and the iked process starts to crash repeatedly.