CVE-2026-21910 - Vulnerability Details

CVE-2026-21910 - Junos OS: EX4k Series, QFX5k Series: In an EVPN-VXLAN configuration link flaps cause Inter-VNI traffic drop

An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on EX4k Series and QFX5k Series platforms allows an unauthenticated network-adjacent attacker flapping an interface to cause traffic between VXLAN Network Identifiers (VNIs) to drop, leading to a Denial of Service (DoS).

On all EX4k and QFX5k platforms, a link flap in an

EVPN-VXLAN configuration Link Aggregation Group (LAG)
results in Inter-VNI traffic dropping when there are multiple load-balanced next-hop routes for the same destination.

This issue is only applicable to systems that support EVPN-VXLAN Virtual Port-Link Aggregation Groups (VPLAG), such as the QFX5110, QFX5120, QFX5200, EX4100, EX4300, EX4400, and EX4650.

Service can only be restored by restarting the affected FPC via the 'request chassis fpc restart slot <slot-number>' command.

This issue affects Junos OS

on EX4k and QFX5k Series:

* all versions before 21.4R3-S12,
* all versions of 22.2
* from 22.4 before 22.4R3-S8,
* from 23.2 before 23.2R2-S5,
* from 23.4 before 23.4R2-S5,
* from 24.2 before 24.2R2-S3,
* from 24.4 before 24.4R2.

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact Low

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00007.

Exploitation none

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Juniper Networks

Junos OS

unaffected

Version	Status	Constraints
`0`	affected	< 21.4R3-S12
`22.2`	affected	< 22.2*
`22.4`	affected	< 22.4R3-S8
`23.2`	affected	< 23.2R2-S5
`23.4`	affected	< 23.4R2-S5
`24.2`	affected	< 24.2R2-S3
`24.4`	affected	< 24.4R2

Configuration 1 [-]

AND

OR	cpe:2.3:o:juniper:junos::::::::
	cpe:2.3:o:juniper:junos:21.4:-::::::
	cpe:2.3:o:juniper:junos:21.4:r1::::::
	cpe:2.3:o:juniper:junos:21.4:r1-s1::::::
	cpe:2.3:o:juniper:junos:21.4:r1-s2::::::
	cpe:2.3:o:juniper:junos:21.4:r2::::::
	cpe:2.3:o:juniper:junos:21.4:r2-s1::::::
	cpe:2.3:o:juniper:junos:21.4:r2-s2::::::
	cpe:2.3:o:juniper:junos:21.4:r3::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s1::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s10::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s11::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s2::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s3::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s4::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s5::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s6::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s7::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s8::::::
	cpe:2.3:o:juniper:junos:21.4:r3-s9::::::
	cpe:2.3:o:juniper:junos:22.2:::::::*
	cpe:2.3:o:juniper:junos:22.4:-::::::
	cpe:2.3:o:juniper:junos:22.4:r1::::::
	cpe:2.3:o:juniper:junos:22.4:r1-s1::::::
	cpe:2.3:o:juniper:junos:22.4:r1-s2::::::
	cpe:2.3:o:juniper:junos:22.4:r2::::::
	cpe:2.3:o:juniper:junos:22.4:r2-s1::::::
	cpe:2.3:o:juniper:junos:22.4:r2-s2::::::
	cpe:2.3:o:juniper:junos:22.4:r3::::::
	cpe:2.3:o:juniper:junos:22.4:r3-s1::::::
	cpe:2.3:o:juniper:junos:22.4:r3-s2::::::
	cpe:2.3:o:juniper:junos:22.4:r3-s3::::::
	cpe:2.3:o:juniper:junos:22.4:r3-s4::::::
	cpe:2.3:o:juniper:junos:22.4:r3-s5::::::
	cpe:2.3:o:juniper:junos:22.4:r3-s6::::::
	cpe:2.3:o:juniper:junos:22.4:r3-s7::::::
	cpe:2.3:o:juniper:junos:23.2:-::::::
	cpe:2.3:o:juniper:junos:23.2:r1::::::
	cpe:2.3:o:juniper:junos:23.2:r1-s1::::::
	cpe:2.3:o:juniper:junos:23.2:r1-s2::::::
	cpe:2.3:o:juniper:junos:23.2:r2::::::
	cpe:2.3:o:juniper:junos:23.2:r2-s1::::::
	cpe:2.3:o:juniper:junos:23.2:r2-s2::::::
	cpe:2.3:o:juniper:junos:23.2:r2-s3::::::
	cpe:2.3:o:juniper:junos:23.2:r2-s4::::::
	cpe:2.3:o:juniper:junos:23.4:-::::::
	cpe:2.3:o:juniper:junos:23.4:r1::::::
	cpe:2.3:o:juniper:junos:23.4:r1-s1::::::
	cpe:2.3:o:juniper:junos:23.4:r1-s2::::::
	cpe:2.3:o:juniper:junos:23.4:r2::::::
	cpe:2.3:o:juniper:junos:23.4:r2-s1::::::
	cpe:2.3:o:juniper:junos:23.4:r2-s2::::::
	cpe:2.3:o:juniper:junos:23.4:r2-s3::::::
	cpe:2.3:o:juniper:junos:23.4:r2-s4::::::
	cpe:2.3:o:juniper:junos:24.2:-::::::
	cpe:2.3:o:juniper:junos:24.2:r1::::::
	cpe:2.3:o:juniper:junos:24.2:r1-s1::::::
	cpe:2.3:o:juniper:junos:24.2:r1-s2::::::
	cpe:2.3:o:juniper:junos:24.2:r2::::::
	cpe:2.3:o:juniper:junos:24.2:r2-s1::::::
	cpe:2.3:o:juniper:junos:24.2:r2-s2::::::
	cpe:2.3:o:juniper:junos:24.4:-::::::
	cpe:2.3:o:juniper:junos:24.4:r1::::::
	cpe:2.3:o:juniper:junos:24.4:r1-s2::::::
cpe:2.3:o:juniper:junos:24.4:r1-s3::::::

OR	cpe:2.3:h:juniper:ex4000:-:::::::*
	cpe:2.3:h:juniper:ex4100:-:::::::*
	cpe:2.3:h:juniper:ex4100-f:-:::::::*
	cpe:2.3:h:juniper:ex4100-h:-:::::::*
	cpe:2.3:h:juniper:ex4300:-:::::::*
	cpe:2.3:h:juniper:ex4400:-:::::::*
	cpe:2.3:h:juniper:ex4600:-:::::::*
	cpe:2.3:h:juniper:ex4650:-:::::::*
	cpe:2.3:h:juniper:qfx5110:-:::::::*
	cpe:2.3:h:juniper:qfx5120:-:::::::*
	cpe:2.3:h:juniper:qfx5130:-:::::::*
	cpe:2.3:h:juniper:qfx5200:-:::::::*
	cpe:2.3:h:juniper:qfx5210:-:::::::*
	cpe:2.3:h:juniper:qfx5220:-:::::::*
	cpe:2.3:h:juniper:qfx5230-64cd:-:::::::*
	cpe:2.3:h:juniper:qfx5240:-:::::::*
	cpe:2.3:h:juniper:qfx5241:-:::::::*
	cpe:2.3:h:juniper:qfx5700:-:::::::*

No data.

OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.

Vendors	Products
Juniper Subscribe	Ex-series Subscribe Ex4100 Subscribe Ex4300 Subscribe Ex4400 Subscribe Ex4650 Subscribe Junos Os Subscribe Qfx5110 Subscribe Qfx5120 Subscribe Qfx5200 Subscribe
Juniper Networks Subscribe	Junos Os Subscribe

Project Subscriptions

Vendors	Products
Juniper Subscribe	Ex-series Subscribe Ex4000 Subscribe Ex4100 Subscribe Ex4100-f Subscribe Ex4100-h Subscribe Ex4300 Subscribe Ex4400 Subscribe Ex4600 Subscribe Ex4650 Subscribe Junos Subscribe Junos Os Subscribe Qfx5110 Subscribe Qfx5120 Subscribe Qfx5130 Subscribe Qfx5200 Subscribe Qfx5210 Subscribe Qfx5220 Subscribe Qfx5230-64cd Subscribe Qfx5240 Subscribe Qfx5241 Subscribe Qfx5700 Subscribe
Juniper Networks Subscribe	Junos Os Subscribe

Advisories

No advisories yet.

Fixes

Solution

The following software releases have been updated to resolve this specific issue: Junos OS 21.4R3-S12, 22.4R3-S8, 23.2R2-S5, 23.4R2-S5, 24.2R2-S3, 24.4R2, 25.2R1, and all subsequent releases.

Workaround

There are no known workarounds for this issue.

References

Link	Providers
https://kb.juniper.net/JSA106009
https://supportportal.juniper.net/JSA106009

History

Wed, 25 Feb 2026 17:30:00 +0000

Type	Values Removed	Values Added
First Time appeared		Juniper ex4000 Juniper ex4100-f Juniper ex4100-h Juniper ex4600 Juniper junos Juniper qfx5130 Juniper qfx5210 Juniper qfx5220 Juniper qfx5230-64cd Juniper qfx5240 Juniper qfx5241 Juniper qfx5700
CPEs		cpe:2.3:h:juniper:ex4000:-:::::::* cpe:2.3:h:juniper:ex4100-f:-:::::::* cpe:2.3:h:juniper:ex4100-h:-:::::::* cpe:2.3:h:juniper:ex4100:-:::::::* cpe:2.3:h:juniper:ex4300:-:::::::* cpe:2.3:h:juniper:ex4400:-:::::::* cpe:2.3:h:juniper:ex4600:-:::::::* cpe:2.3:h:juniper:ex4650:-:::::::* cpe:2.3:h:juniper:qfx5110:-:::::::* cpe:2.3:h:juniper:qfx5120:-:::::::* cpe:2.3:h:juniper:qfx5130:-:::::::* cpe:2.3:h:juniper:qfx5200:-:::::::* cpe:2.3:h:juniper:qfx5210:-:::::::* cpe:2.3:h:juniper:qfx5220:-:::::::* cpe:2.3:h:juniper:qfx5230-64cd:-:::::::* cpe:2.3:h:juniper:qfx5240:-:::::::* cpe:2.3:h:juniper:qfx5241:-:::::::* cpe:2.3:h:juniper:qfx5700:-:::::::* cpe:2.3:o:juniper:junos:::::::: cpe:2.3:o:juniper:junos:21.4:-:::::: cpe:2.3:o:juniper:junos:21.4:r1-s1:::::: cpe:2.3:o:juniper:junos:21.4:r1-s2:::::: cpe:2.3:o:juniper:junos:21.4:r1:::::: cpe:2.3:o:juniper:junos:21.4:r2-s1:::::: cpe:2.3:o:juniper:junos:21.4:r2-s2:::::: cpe:2.3:o:juniper:junos:21.4:r2:::::: cpe:2.3:o:juniper:junos:21.4:r3-s10:::::: cpe:2.3:o:juniper:junos:21.4:r3-s11:::::: cpe:2.3:o:juniper:junos:21.4:r3-s1:::::: cpe:2.3:o:juniper:junos:21.4:r3-s2:::::: cpe:2.3:o:juniper:junos:21.4:r3-s3:::::: cpe:2.3:o:juniper:junos:21.4:r3-s4:::::: cpe:2.3:o:juniper:junos:21.4:r3-s5:::::: cpe:2.3:o:juniper:junos:21.4:r3-s6:::::: cpe:2.3:o:juniper:junos:21.4:r3-s7:::::: cpe:2.3:o:juniper:junos:21.4:r3-s8:::::: cpe:2.3:o:juniper:junos:21.4:r3-s9:::::: cpe:2.3:o:juniper:junos:21.4:r3:::::: cpe:2.3:o:juniper:junos:22.2:::::::* cpe:2.3:o:juniper:junos:22.4:-:::::: cpe:2.3:o:juniper:junos:22.4:r1-s1:::::: cpe:2.3:o:juniper:junos:22.4:r1-s2:::::: cpe:2.3:o:juniper:junos:22.4:r1:::::: cpe:2.3:o:juniper:junos:22.4:r2-s1:::::: cpe:2.3:o:juniper:junos:22.4:r2-s2:::::: cpe:2.3:o:juniper:junos:22.4:r2:::::: cpe:2.3:o:juniper:junos:22.4:r3-s1:::::: cpe:2.3:o:juniper:junos:22.4:r3-s2:::::: cpe:2.3:o:juniper:junos:22.4:r3-s3:::::: cpe:2.3:o:juniper:junos:22.4:r3-s4:::::: cpe:2.3:o:juniper:junos:22.4:r3-s5:::::: cpe:2.3:o:juniper:junos:22.4:r3-s6:::::: cpe:2.3:o:juniper:junos:22.4:r3-s7:::::: cpe:2.3:o:juniper:junos:22.4:r3:::::: cpe:2.3:o:juniper:junos:23.2:-:::::: cpe:2.3:o:juniper:junos:23.2:r1-s1:::::: cpe:2.3:o:juniper:junos:23.2:r1-s2:::::: cpe:2.3:o:juniper:junos:23.2:r1:::::: cpe:2.3:o:juniper:junos:23.2:r2-s1:::::: cpe:2.3:o:juniper:junos:23.2:r2-s2:::::: cpe:2.3:o:juniper:junos:23.2:r2-s3:::::: cpe:2.3:o:juniper:junos:23.2:r2-s4:::::: cpe:2.3:o:juniper:junos:23.2:r2:::::: cpe:2.3:o:juniper:junos:23.4:-:::::: cpe:2.3:o:juniper:junos:23.4:r1-s1:::::: cpe:2.3:o:juniper:junos:23.4:r1-s2:::::: cpe:2.3:o:juniper:junos:23.4:r1:::::: cpe:2.3:o:juniper:junos:23.4:r2-s1:::::: cpe:2.3:o:juniper:junos:23.4:r2-s2:::::: cpe:2.3:o:juniper:junos:23.4:r2-s3:::::: cpe:2.3:o:juniper:junos:23.4:r2-s4:::::: cpe:2.3:o:juniper:junos:23.4:r2:::::: cpe:2.3:o:juniper:junos:24.2:-:::::: cpe:2.3:o:juniper:junos:24.2:r1-s1:::::: cpe:2.3:o:juniper:junos:24.2:r1-s2:::::: cpe:2.3:o:juniper:junos:24.2:r1:::::: cpe:2.3:o:juniper:junos:24.2:r2-s1:::::: cpe:2.3:o:juniper:junos:24.2:r2-s2:::::: cpe:2.3:o:juniper:junos:24.2:r2:::::: cpe:2.3:o:juniper:junos:24.4:-:::::: cpe:2.3:o:juniper:junos:24.4:r1-s2:::::: cpe:2.3:o:juniper:junos:24.4:r1-s3:::::: cpe:2.3:o:juniper:junos:24.4:r1::::::
Vendors & Products		Juniper ex4000 Juniper ex4100-f Juniper ex4100-h Juniper ex4600 Juniper junos Juniper qfx5130 Juniper qfx5210 Juniper qfx5220 Juniper qfx5230-64cd Juniper qfx5240 Juniper qfx5241 Juniper qfx5700

Fri, 16 Jan 2026 14:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Juniper Juniper ex-series Juniper ex4100 Juniper ex4300 Juniper ex4400 Juniper ex4650 Juniper junos Os Juniper qfx5110 Juniper qfx5120 Juniper qfx5200 Juniper Networks Juniper Networks junos Os
Vendors & Products		Juniper Juniper ex-series Juniper ex4100 Juniper ex4300 Juniper ex4400 Juniper ex4650 Juniper junos Os Juniper qfx5110 Juniper qfx5120 Juniper qfx5200 Juniper Networks Juniper Networks junos Os

Thu, 15 Jan 2026 21:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Thu, 15 Jan 2026 20:30:00 +0000

Type	Values Removed	Values Added
Description		An Improper Check for Unusual or Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper Networks Junos OS on EX4k Series and QFX5k Series platforms allows an unauthenticated network-adjacent attacker flapping an interface to cause traffic between VXLAN Network Identifiers (VNIs) to drop, leading to a Denial of Service (DoS). On all EX4k and QFX5k platforms, a link flap in an EVPN-VXLAN configuration Link Aggregation Group (LAG) results in Inter-VNI traffic dropping when there are multiple load-balanced next-hop routes for the same destination. This issue is only applicable to systems that support EVPN-VXLAN Virtual Port-Link Aggregation Groups (VPLAG), such as the QFX5110, QFX5120, QFX5200, EX4100, EX4300, EX4400, and EX4650. Service can only be restored by restarting the affected FPC via the 'request chassis fpc restart slot <slot-number>' command. This issue affects Junos OS on EX4k and QFX5k Series: * all versions before 21.4R3-S12, * all versions of 22.2 * from 22.4 before 22.4R3-S8, * from 23.2 before 23.2R2-S5, * from 23.4 before 23.4R2-S5, * from 24.2 before 24.2R2-S3, * from 24.4 before 24.4R2.
Title		Junos OS: EX4k Series, QFX5k Series: In an EVPN-VXLAN configuration link flaps cause Inter-VNI traffic drop
Weaknesses		CWE-754
References		https://kb.juniper.net/JSA106009 https://supportportal.juniper.net/JSA106009
Metrics		cvssV3_1 `{'score': 6.5, 'vector': 'CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H'}` cvssV4_0 `{'score': 7.1, 'vector': 'CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:L/AU:Y/R:U/RE:M/U:Green'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: juniper

Published: 2026-01-15T20:23:29.682Z

Updated: 2026-01-15T20:51:57.933Z

Reserved: 2026-01-05T17:32:48.710Z

Link: CVE-2026-21910

Vulnrichment

Updated: 2026-01-15T20:51:54.771Z

NVD

Status : Analyzed

Published: 2026-01-15T21:16:06.920

Modified: 2026-02-25T17:17:44.337

Link: CVE-2026-21910

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-01-16T13:42:54Z

Weaknesses

CWE-754

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact Low

Attack Vector Adjacent Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact partial

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object