Description

An Incorrect Permission Assignment for Critical Resource vulnerability in line card script processing of Juniper Networks Junos OS allows a local, low-privileged user to install scripts to be executed as root, leading to privilege escalation. A local user with access to the local file system can copy a script to the router in a way that will be executed as root, as the system boots. Execution of the script as root can lead to privilege escalation, potentially providing the adversary complete control of the system. This issue only affects specific line cards, such as the MPC10, MPC11, LC4800, LC9600, MX304-LMIC16, SRX4700, and EX9200-15C. This issue affects Junos OS: * from 23.2 before 23.2R2-S4,  * from 23.4 before 23.4R2-S5,  * from 24.2 before 24.2R2-S1,  * from 24.4 before 24.4R1-S3, 24.4R2. This issue does not affect versions prior to 23.1R2.

INFO

Published Date :

2025-07-11T14:38:52.289Z

Last Modified :

2026-02-26T17:50:46.098Z

Source :

juniper
AFFECTED PRODUCTS

The following products are affected by CVE-2025-30661 vulnerability.

Vendors Products
Juniper
  • Ex9200-15c
  • Junos
  • Lc4800
  • Lc9600
  • Mpc10e-10c
  • Mpc10e-15c
  • Mpc11
  • Mx304-lmic16
  • Srx4700
Juniper Networks
  • Junos Os
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-30661.

URL Resource
https://github.com/orangecertcc/security-research/security/advisories/GHSA-2p66-9j7x-fmch cve-icon cve-icon
https://supportportal.juniper.net/JSA100057 cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Attack Requirements
Privileges Required
User Interaction
VS Confidentiality
VS Integrity
VS Availability
SS Confidentiality
SS Integrity
SS Availability
Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact