Juniper Networks has issued security patches to resolve a significant security vulnerability affecting Session Smart Router, Session Smart Conductor, and WAN Assurance Router products that could be leveraged to seize control of vulnerable devices.
Listed as CVE-2025-21589, the weakness holds a CVSS v3.1 rating of 9.8 and a CVS v4 rating of 9.3.
“An Authentication Bypass Utilizing an Alternate Route or