eol.network
Account
Home/Juniper/QFX/QFX3500-48S4Q-AFI

QFX3500-48S4Q-AFI

Announced in: QFX3500 and QFX3600

Juniper Chassis · QFX Series

High confidence Official Juniper notice ↗ Verified
QFX3500-48S4Q-AFI is dead. Juniper support ended (-1250d). Last available for order .

Is the QFX3500-48S4Q-AFI still supported?

No. Juniper ended support for the QFX3500 and QFX3600 on 2022-12-31. No further security fixes will be issued. See Juniper's lifecycle bulletin.

When does the QFX3500-48S4Q-AFI reach end of support?

Juniper support for the QFX3500 and QFX3600 ends on 2022-12-31.

What replaces the QFX3500-48S4Q-AFI?

Juniper has not published a successor model for the QFX3500 and QFX3600.

What known-exploited CVEs apply to the QFX3500-48S4Q-AFI past end of support?

7 CVEs in CISA's Known Exploited Vulnerabilities catalog apply to the platform the QFX3500 and QFX3600 runs. These will not be patched on this device because it is past the Juniper security-support date. See the Known Exploited Vulnerabilities table below for the full list.

Known Exploited Vulnerabilities

This device is past Juniper's security-support date. 7 CVEs in CISA's Known Exploited Vulnerabilities catalog apply to the platform it runs. Juniper is not issuing patches for this model. Isolate, compensate, or refresh.

CVE KEV added Vulnerability Flags
CVE-2025-21590 Juniper Junos OS Improper Isolation or Compartmentalization Vulnerability
Advisory 1 Advisory 2
CVE-2023-36844 Juniper Junos OS EX Series PHP External Variable Modification Vulnerability
Advisory 1 Advisory 2
CVE-2023-36845 Juniper Junos OS EX Series and SRX Series PHP External Variable Modification Vulnerability
Advisory 1 Advisory 2
CVE-2023-36846 Juniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability
Advisory 1 Advisory 2
CVE-2023-36847 Juniper Junos OS EX Series Missing Authentication for Critical Function Vulnerability
Advisory 1 Advisory 2
CVE-2023-36851 Juniper Junos OS SRX Series Missing Authentication for Critical Function Vulnerability
Advisory 1 Advisory 2
CVE-2020-1631 Juniper Junos OS Path Traversal Vulnerability
Advisory 1

Source: CISA Known Exploited Vulnerabilities catalog. The Ransomware flag reflects CISA's own knownRansomwareCampaignUse field, set when the CVE has been observed in ransomware campaigns per their threat intel. It's not a property of the vulnerability description itself.

Correlation is at the platform level, not per-OS-version. Not exhaustive: KEV only lists actively-exploited CVEs and many relevant unexploited vulnerabilities are not here. Verify against vendor security advisories (PSIRT, JSA, PAN-SA) and NVD before acting. See compensating controls if refresh isn't immediate.

QFX3500-48S4Q-AFI Lifecycle Overview

The Juniper QFX3500-48S4Q-AFI (QFX3500-48S4Q-AFI) is a chassis product in the Juniper QFX series. This product has reached end of life as of , meaning Juniper no longer provides technical support, software updates, or hardware replacement for this product. It was last available for purchase on . Organizations still running the QFX3500-48S4Q-AFI should plan a migration .

Lifecycle Milestones

Lifecycle notice published 10y 7mo ago
End of sale 10y 1mo ago
Last date of support 3y 5mo ago

Additional Dates

Last Warranty Conversion Date 9y 1mo ago
Same Day Support Discontinued Date 8y 1mo ago

Other QFX Series SKUs

Sunsetting around the same time

Other Juniper hardware reaching end of support near .

Applicable Platforms
QFX
↑ Top