PatchSiren

PatchSiren cyber security CVE debrief

CVE-2026-33799 Juniper Networks CVE debrief

CVE-2026-33799 is an Out-of-bounds Write vulnerability in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved. An authenticated network-based attacker can send specific valid SNMPv3 queries to trigger a memory leak, leading to snmpd process memory exhaustion, process crash, and restart. This impacts the ability to monitor the system via SNMP. Memory usage can be monitored using the command 'show system processes extensive | match snmpd'.

Vendor
Juniper Networks
Product
Junos OS
CVSS
MEDIUM 5.3
CISA KEV
Not listed in stored evidence
Original CVE published
2026-07-09
Original CVE updated
2026-07-10
Advisory published
2026-07-09
Advisory updated
2026-07-10

Who should care

Users of Juniper Networks Junos OS and Junos OS Evolved should be aware of this vulnerability and take steps to mitigate it. This includes administrators and security teams responsible for monitoring and maintaining network devices.

Technical summary

The vulnerability exists in the SNMP daemon (snmpd) of Juniper Networks Junos OS and Junos OS Evolved. An authenticated network-based attacker can exploit this by sending specific valid SNMPv3 queries, triggering a memory leak. Continuous receipt of these queries leads to snmpd process memory exhaustion, causing a process crash and restart. This affects the system's ability to be monitored via SNMP. The issue impacts multiple versions of Junos OS and Junos OS Evolved, specifically: Junos OS: all versions before 21.2R3-S8; from 21.4 before 21.4R3-S7; from 22.1 before 22.1R3-S6; from 22.2 before 22.2R3-S4; from 22.3 before 22.3R3-S3; from 22.4 before 22.4R3-S2; from 23.2 before 23.2R2; from 23.4 before 23.4R2. Junos OS Evolved: all versions before 21.2R3-S8-EVO; from 21.4 before 21.4R3-S7-EVO; all versions of 22.1-EVO; from 22.2 before 22.2R3-S4-EVO; from 22.3 before 22.3R3-S3-EVO; all versions of 22.4-EVO; from 23.2 before 23.2R2-EVO; from 23.4 before 23.4R2-EVO.

Defensive priority

Medium priority due to the need for authentication and potential impact on system monitoring.

Recommended defensive actions

  • Apply patches or updates as provided by Juniper Networks for the affected versions of Junos OS and Junos OS Evolved.
  • Restrict SNMP access to trusted sources.
  • Monitor system processes for signs of memory exhaustion related to snmpd.
  • Implement compensating controls such as limiting SNMP queries.
  • Review system configurations for potential vulnerabilities.
  • Track and verify patch deployments for affected systems.
  • Conduct regular security audits to identify potential exposure.

Evidence notes

The CVE record was published on 2026-07-09T21:16:54.963Z and was last modified on 2026-07-10T14:16:52.830Z. The NVD entry is currently in the 'Received' status. Limited details are available about the exploitability and scope of the vulnerability.

Official resources

AI-assisted PatchSiren debrief based on the supplied source corpus. The CVE record was published on 2026-07-09T21:16:54.963Z and has not been modified since then. The NVD entry is currently Received.