CVE-2025-59968

HIGH
Published Oct 9, 2025 Modified Jan 23, 2026 CWE-862

Description

A Missing Authorization vulnerability in the Juniper Networks Junos Space Security Director allows an unauthenticated network-based attacker to read or modify metadata via the web interface.  Tampering with this metadata can result in managed SRX Series devices permitting network traffic that should otherwise be blocked by policy, effectively bypassing intended security controls. This issue affects Junos Space Security Director * all versions prior to 24.1R3 Patch V4 This issue does not affect managed cSRX Series devices.

Is your site exposed to CVE-2025-59968?

Run a free security scan — no signup, results in seconds.

CVSS v3.1 Score

8.6
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

Weakness Type (CWE)

CWE-862 Missing Authorization

Affected Products

Vendor Product
juniper space_security_director
juniper space_security_director
juniper space_security_director
juniper space_security_director
juniper vsrx
juniper srx1500
juniper srx1600
juniper srx2300
juniper srx300
juniper srx320
juniper srx340
juniper srx345
juniper srx380
juniper srx4100
juniper srx4120
juniper srx4200
juniper srx4300
juniper srx4600
juniper srx4700
juniper srx5400
juniper srx5600
juniper srx5800

References

Frequently Asked Questions

What is CVE-2025-59968? +
A Missing Authorization vulnerability in the Juniper Networks Junos Space Security Director allows an unauthenticated network-based attacker to read or modify metadata via the web interface.  Tampering with this metadata can result in managed SRX Series devices permitting network traffic that should otherwise be blocked by policy, effectively bypassing intended security controls. This issue affects Junos Space Security Director * all versions prior to 24.1R3 Patch V4 This issue does not affect managed cSRX Series devices. It has a CVSS v3.1 base score of 8.6 (HIGH).
How severe is CVE-2025-59968? +
CVE-2025-59968 has a CVSS v3.1 score of 8.6 out of 10, rated HIGH. This is a high-severity vulnerability that should be prioritized for patching.
What products are affected by CVE-2025-59968? +
CVE-2025-59968 affects products from juniper, specifically: space_security_director, srx1500, srx1600, srx2300, srx300, srx320, srx340, srx345, srx380, srx4100, srx4120, srx4200, srx4300, srx4600, srx4700, srx5400, srx5600, srx5800, vsrx. Check the affected products table above for specific version ranges.
How do I check if I'm vulnerable to CVE-2025-59968? +
You can use Secably's free Website Scanner to check your website for known vulnerabilities. For infrastructure scanning, use the Port Scanner to identify exposed services that may be affected. Check the vendor advisories linked above for specific patch and version information.

Related Vulnerabilities

Don't wait for an exploit

Scan your website for vulnerabilities like CVE-2025-59968 — free, no signup required.