What is CVE-2025-13914?

CVE-2025-13914 is a high-severity vulnerability in Juniper Networks Apstra, classified under Key Exchange without Entity Authentication. CVSS score: 8.7/10. Published 2026-04-09.

How severe is CVE-2025-13914?

High severity. CVSS v3 base score is 8.7 out of 10.

Vulnerability in Juniper Networks Apstra

CVE-2025-13914

A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstra allows a unauthenticated, MITM attacker to impersonate managed devices. Due to insufficient SSH host key validation an attac…

EPSS: 0.000 (13.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.7 (High). Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N.

Affected products

Juniper Networks Apstra — versions 0

Weakness classification (CWE)

CWE-322 — Key Exchange without Entity Authentication

References

kb.juniper.net/JSA107862 (vendor-advisory)

Frequently asked questions

What is CVE-2025-13914?: CVE-2025-13914 is a high-severity vulnerability in Juniper Networks Apstra, classified under Key Exchange without Entity Authentication. CVSS score: 8.7/10. Published 2026-04-09.
How severe is CVE-2025-13914?: High severity. CVSS v3 base score is 8.7 out of 10.