{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-30406", "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "state": "PUBLISHED", "assignerShortName": "juniper", "dateReserved": "2024-03-26T23:06:19.981Z", "datePublished": "2024-04-12T15:04:06.515Z", "dateUpdated": "2024-08-02T01:32:07.336Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "platforms": ["Paragon Active Assurance Test Agent", "ACX Series"], "product": "Junos OS Evolved", "vendor": "Juniper Networks", "versions": [{"lessThanOrEqual": "23.2R2-EVO", "status": "affected", "version": "23.1R1-EVO", "versionType": "semver"}]}], "configurations": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<tt>Potentially affected devices are those which use the following configuration statement:<br><br>&nbsp; &lt;codeph&gt;test-agent&lt;/codeph&gt;<br></tt><br>Located at the hierarchy level:<br>&nbsp;&nbsp;<br>&nbsp; &lt;codeph&gt;[edit services pas]&lt;/codeph&gt;<br><br>Therefore verify that the following minimal configuration statement in the Junos device exists:<br>&nbsp; [services pas]<br><br>And verify that the agent is running on the device.&nbsp;<br><br>"}], "value": "Potentially affected devices are those which use the following configuration statement:\n\n\u00a0 <codeph>test-agent</codeph>\n\nLocated at the hierarchy level:\n\u00a0\u00a0\n\u00a0 <codeph>[edit services pas]</codeph>\n\nTherefore verify that the following minimal configuration statement in the Junos device exists:\n\u00a0 [services pas]\n\nAnd verify that the agent is running on the device."}], "datePublic": "2024-04-10T16:00:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "A Cleartext Storage in a File on Disk vulnerability in Juniper Networks Junos OS Evolved ACX Series devices&nbsp;using the Paragon Active Assurance Test Agent software installed on network devices allows a local, authenticated attacker with high privileges to read all other users login credentials.<br><br>This issue affects only Juniper Networks Junos OS Evolved ACX Series devices using&nbsp;the Paragon Active Assurance Test Agent software installed on these devices from 2<span style=\"background-color: rgb(255, 255, 255);\">3.1R1-EVO through 23.2R2-EVO.&nbsp;<br></span><br>This issue does not affect releases before 23.1R1-EVO.<br><br><br><br>"}], "value": "A Cleartext Storage in a File on Disk vulnerability in Juniper Networks Junos OS Evolved ACX Series devices\u00a0using the Paragon Active Assurance Test Agent software installed on network devices allows a local, authenticated attacker with high privileges to read all other users login credentials.\n\nThis issue affects only Juniper Networks Junos OS Evolved ACX Series devices using\u00a0the Paragon Active Assurance Test Agent software installed on these devices from 23.1R1-EVO through 23.2R2-EVO.\u00a0\n\nThis issue does not affect releases before 23.1R1-EVO."}], "exploits": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>Juniper SIRT is not aware of any malicious exploitation of this vulnerability.</p>"}], "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"cvssV4_0": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "baseScore": 6.7, "baseSeverity": "MEDIUM", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "NONE", "userInteraction": "PASSIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-313", "description": "CWE-313: Cleartext Storage in a File or on Disk", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "shortName": "juniper", "dateUpdated": "2024-05-16T20:42:37.549Z"}, "references": [{"tags": ["vendor-advisory"], "url": "https://supportportal.juniper.net/JSA79104"}, {"tags": ["product"], "url": "https://www.juniper.net/documentation/us/en/software/junos/junos-install-upgrade-evo/topics/topic-map/paa-test-agent-install.html"}, {"tags": ["product"], "url": "https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/services-paa-test-agent.html"}, {"tags": ["technical-description"], "url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>The following software releases have been updated to resolve this specific issue: </p><p>Junos OS Evolved: 23.2R2-EVO, 23.3R1-EVO, and all subsequent releases.</p><p><span style=\"background-color: rgb(255, 255, 255);\">Note: Before you upgrade the system software from Junos OS Evolved Release 23.2R1 to a later release, you must uninstall the test agent using the </span><code>request services paa uninstall</code><span style=\"background-color: rgb(255, 255, 255);\">&nbsp;command. See the product documentation for upgrade procedures and coordinate with JTAC for support.</span></p>"}], "value": "The following software releases have been updated to resolve this specific issue: \n\nJunos OS Evolved: 23.2R2-EVO, 23.3R1-EVO, and all subsequent releases.\n\nNote: Before you upgrade the system software from Junos OS Evolved Release 23.2R1 to a later release, you must uninstall the test agent using the request services paa uninstall\u00a0command. See the product documentation for upgrade procedures and coordinate with JTAC for support."}], "source": {"advisory": "JSA79104", "defect": ["1728816"], "discovery": "INTERNAL"}, "timeline": [{"lang": "en", "time": "2024-04-10T16:00:00.000Z", "value": "Initial Publication"}], "title": "Junos OS Evolved: ACX Series with Paragon Active Assurance Test Agent: A local high privileged attacker can recover other administrators credentials", "workarounds": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>There are no known workarounds for this issue.</p><p>Devices using the following deprecated operational mode command are unaffected:</p><p> &lt;codeph&gt;request services paa install&lt;/codeph&gt;</p><p>See the Junos OS Evolved Software Installation and Upgrade Guide for the Paragon Active Assurance (PAA) Test Agent installation instructions for further information.</p>"}], "value": "There are no known workarounds for this issue.\n\nDevices using the following deprecated operational mode command are unaffected:\n\n <codeph>request services paa install</codeph>\n\nSee the Junos OS Evolved Software Installation and Upgrade Guide for the Paragon Active Assurance (PAA) Test Agent installation instructions for further information."}], "x_generator": {"engine": "Vulnogram 0.1.0-av217"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-30406", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-12T17:46:38.908028Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-05T17:22:41.148Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:32:07.336Z"}, "title": "CVE Program Container", "references": [{"tags": ["vendor-advisory", "x_transferred"], "url": "https://supportportal.juniper.net/JSA79104"}, {"tags": ["product", "x_transferred"], "url": "https://www.juniper.net/documentation/us/en/software/junos/junos-install-upgrade-evo/topics/topic-map/paa-test-agent-install.html"}, {"tags": ["product", "x_transferred"], "url": "https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/services-paa-test-agent.html"}, {"tags": ["technical-description", "x_transferred"], "url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N"}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://supportportal.juniper.net/JSA79104", "tags": ["vendor-advisory", "x_transferred"]}, {"url": "https://www.juniper.net/documentation/us/en/software/junos/junos-install-upgrade-evo/topics/topic-map/paa-test-agent-install.html", "tags": ["product", "x_transferred"]}, {"url": "https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/services-paa-test-agent.html", "tags": ["product", "x_transferred"]}, {"url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N", "tags": ["technical-description", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T01:32:07.336Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2024-30406", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-04-12T17:46:38.908028Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-07-05T15:20:43.544Z"}}], "cna": {"title": "Junos OS Evolved: ACX Series with Paragon Active Assurance Test Agent: A local high privileged attacker can recover other administrators credentials", "source": {"defect": ["1728816"], "advisory": "JSA79104", "discovery": "INTERNAL"}, "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 5.5, "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}, {"format": "CVSS", "cvssV4_0": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 6.7, "Automatable": "NOT_DEFINED", "attackVector": "LOCAL", "baseSeverity": "MEDIUM", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N", "providerUrgency": "NOT_DEFINED", "userInteraction": "PASSIVE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "HIGH", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "subAvailabilityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "vulnConfidentialityImpact": "HIGH", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Juniper Networks", "product": "Junos OS Evolved", "versions": [{"status": "affected", "version": "23.1R1-EVO", "versionType": "semver", "lessThanOrEqual": "23.2R2-EVO"}], "platforms": ["Paragon Active Assurance Test Agent", "ACX Series"], "defaultStatus": "unaffected"}], "exploits": [{"lang": "en", "value": "Juniper SIRT is not aware of any malicious exploitation of this vulnerability.", "supportingMedia": [{"type": "text/html", "value": "<p>Juniper SIRT is not aware of any malicious exploitation of this vulnerability.</p>", "base64": false}]}], "timeline": [{"lang": "en", "time": "2024-04-10T16:00:00.000Z", "value": "Initial Publication"}], "solutions": [{"lang": "en", "value": "The following software releases have been updated to resolve this specific issue: \n\nJunos OS Evolved: 23.2R2-EVO, 23.3R1-EVO, and all subsequent releases.\n\nNote: Before you upgrade the system software from Junos OS Evolved Release 23.2R1 to a later release, you must uninstall the test agent using the request services paa uninstall\u00a0command. See the product documentation for upgrade procedures and coordinate with JTAC for support.", "supportingMedia": [{"type": "text/html", "value": "<p>The following software releases have been updated to resolve this specific issue: </p><p>Junos OS Evolved: 23.2R2-EVO, 23.3R1-EVO, and all subsequent releases.</p><p><span style=\"background-color: rgb(255, 255, 255);\">Note: Before you upgrade the system software from Junos OS Evolved Release 23.2R1 to a later release, you must uninstall the test agent using the </span><code>request services paa uninstall</code><span style=\"background-color: rgb(255, 255, 255);\">&nbsp;command. See the product documentation for upgrade procedures and coordinate with JTAC for support.</span></p>", "base64": false}]}], "datePublic": "2024-04-10T16:00:00.000Z", "references": [{"url": "https://supportportal.juniper.net/JSA79104", "tags": ["vendor-advisory"]}, {"url": "https://www.juniper.net/documentation/us/en/software/junos/junos-install-upgrade-evo/topics/topic-map/paa-test-agent-install.html", "tags": ["product"]}, {"url": "https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/services-paa-test-agent.html", "tags": ["product"]}, {"url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N", "tags": ["technical-description"]}], "workarounds": [{"lang": "en", "value": "There are no known workarounds for this issue.\n\nDevices using the following deprecated operational mode command are unaffected:\n\n <codeph>request services paa install</codeph>\n\nSee the Junos OS Evolved Software Installation and Upgrade Guide for the Paragon Active Assurance (PAA) Test Agent installation instructions for further information.", "supportingMedia": [{"type": "text/html", "value": "<p>There are no known workarounds for this issue.</p><p>Devices using the following deprecated operational mode command are unaffected:</p><p> &lt;codeph&gt;request services paa install&lt;/codeph&gt;</p><p>See the Junos OS Evolved Software Installation and Upgrade Guide for the Paragon Active Assurance (PAA) Test Agent installation instructions for further information.</p>", "base64": false}]}], "x_generator": {"engine": "Vulnogram 0.1.0-av217"}, "descriptions": [{"lang": "en", "value": "A Cleartext Storage in a File on Disk vulnerability in Juniper Networks Junos OS Evolved ACX Series devices\u00a0using the Paragon Active Assurance Test Agent software installed on network devices allows a local, authenticated attacker with high privileges to read all other users login credentials.\n\nThis issue affects only Juniper Networks Junos OS Evolved ACX Series devices using\u00a0the Paragon Active Assurance Test Agent software installed on these devices from 23.1R1-EVO through 23.2R2-EVO.\u00a0\n\nThis issue does not affect releases before 23.1R1-EVO.", "supportingMedia": [{"type": "text/html", "value": "A Cleartext Storage in a File on Disk vulnerability in Juniper Networks Junos OS Evolved ACX Series devices&nbsp;using the Paragon Active Assurance Test Agent software installed on network devices allows a local, authenticated attacker with high privileges to read all other users login credentials.<br><br>This issue affects only Juniper Networks Junos OS Evolved ACX Series devices using&nbsp;the Paragon Active Assurance Test Agent software installed on these devices from 2<span style=\"background-color: rgb(255, 255, 255);\">3.1R1-EVO through 23.2R2-EVO.&nbsp;<br></span><br>This issue does not affect releases before 23.1R1-EVO.<br><br><br><br>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-313", "description": "CWE-313: Cleartext Storage in a File or on Disk"}]}], "configurations": [{"lang": "en", "value": "Potentially affected devices are those which use the following configuration statement:\n\n\u00a0 <codeph>test-agent</codeph>\n\nLocated at the hierarchy level:\n\u00a0\u00a0\n\u00a0 <codeph>[edit services pas]</codeph>\n\nTherefore verify that the following minimal configuration statement in the Junos device exists:\n\u00a0 [services pas]\n\nAnd verify that the agent is running on the device.", "supportingMedia": [{"type": "text/html", "value": "<tt>Potentially affected devices are those which use the following configuration statement:<br><br>&nbsp; &lt;codeph&gt;test-agent&lt;/codeph&gt;<br></tt><br>Located at the hierarchy level:<br>&nbsp;&nbsp;<br>&nbsp; &lt;codeph&gt;[edit services pas]&lt;/codeph&gt;<br><br>Therefore verify that the following minimal configuration statement in the Junos device exists:<br>&nbsp; [services pas]<br><br>And verify that the agent is running on the device.&nbsp;<br><br>", "base64": false}]}], "providerMetadata": {"orgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "shortName": "juniper", "dateUpdated": "2024-05-16T20:42:37.549Z"}}}, "cveMetadata": {"cveId": "CVE-2024-30406", "state": "PUBLISHED", "dateUpdated": "2024-08-02T01:32:07.336Z", "dateReserved": "2024-03-26T23:06:19.981Z", "assignerOrgId": "8cbe9d5a-a066-4c94-8978-4b15efeae968", "datePublished": "2024-04-12T15:04:06.515Z", "assignerShortName": "juniper"}, "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:juniper:paragon_active_assurance_test_agent:-:*:*:*:*:*:*:*", "matchCriteriaId": "E66B1E3C-49A7-4049-A4CC-EC41672965D6", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.1:-:*:*:*:*:*:*", "matchCriteriaId": "57477D7B-F7BB-4491-B545-C770B1160F01", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.1:r1:*:*:*:*:*:*", "matchCriteriaId": "82A4E4C8-2D50-4675-8A96-8C9DADCE46CF", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.1:r2:*:*:*:*:*:*", "matchCriteriaId": "54B79847-EBC1-480E-87BE-60D411C93FC6", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.1:r3:*:*:*:*:*:*", "matchCriteriaId": "8135057E-D346-4925-96BA-FE22C7C03903", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.2:-:*:*:*:*:*:*", "matchCriteriaId": "6DEAA7FD-385F-4221-907E-65ABC16BE4BE", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.2:r1:*:*:*:*:*:*", "matchCriteriaId": "DDEC008A-3137-48D1-8ABC-6DB0EFC40E50", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.2:r1-s1:*:*:*:*:*:*", "matchCriteriaId": "558D234D-BC50-415F-86D6-8E19D6C3ACE0", "vulnerable": true}, {"criteria": "cpe:2.3:o:juniper:junos_os_evolved:23.2:r1-s2:*:*:*:*:*:*", "matchCriteriaId": "33F4EEEE-77E9-4973-A770-99E7BA2F05F5", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:juniper:acx5448:-:*:*:*:*:*:*:*", "matchCriteriaId": "2EB7B849-D1D4-46F3-B502-5D84C5E7C3B0", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:acx5448-d:-:*:*:*:*:*:*:*", "matchCriteriaId": "44A836E7-B70D-4786-B4BB-BBD6C89057E6", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:acx5448-m:-:*:*:*:*:*:*:*", "matchCriteriaId": "7F135CB4-1E4F-40CD-8E43-BAD1D6EF3F94", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:acx7020:-:*:*:*:*:*:*:*", "matchCriteriaId": "B2E5B843-629D-43D7-A4EE-EFA658109B25", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:acx7024:-:*:*:*:*:*:*:*", "matchCriteriaId": "1026737F-BA23-4550-9030-EA0502E97953", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:acx7024x:-:*:*:*:*:*:*:*", "matchCriteriaId": "2FFFD74C-7BF9-4EAF-B364-356A8393712D", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:acx710:-:*:*:*:*:*:*:*", "matchCriteriaId": "AC3484A2-C7E4-43D1-9D47-08C531185C67", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:acx7100:-:*:*:*:*:*:*:*", "matchCriteriaId": "CFED6AC1-B3C0-44EC-AF40-E61CF1EE94E0", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:acx7300:-:*:*:*:*:*:*:*", "matchCriteriaId": "8977D7A0-C498-4DC2-9A2C-A58D900386F3", "vulnerable": false}, {"criteria": "cpe:2.3:h:juniper:acx7509:-:*:*:*:*:*:*:*", "matchCriteriaId": "B50EC358-F551-4F2B-9DA1-61B6412AB957", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A Cleartext Storage in a File on Disk vulnerability in Juniper Networks Junos OS Evolved ACX Series devices\u00a0using the Paragon Active Assurance Test Agent software installed on network devices allows a local, authenticated attacker with high privileges to read all other users login credentials.\n\nThis issue affects only Juniper Networks Junos OS Evolved ACX Series devices using\u00a0the Paragon Active Assurance Test Agent software installed on these devices from 23.1R1-EVO through 23.2R2-EVO.\u00a0\n\nThis issue does not affect releases before 23.1R1-EVO."}, {"lang": "es", "value": "Una vulnerabilidad de almacenamiento de texto plano en un archivo en disco en dispositivos Juniper Networks Junos OS Evolved ACX Series que utilizan el software Paragon Active Assurance Test Agent instalado en dispositivos de red permite a un atacante local autenticado con altos privilegios leer las credenciales de inicio de sesi\u00f3n de todos los dem\u00e1s usuarios. Este problema afecta solo a los dispositivos Juniper Networks Junos OS Evolved ACX Series que utilizan el software Paragon Active Assurance Test Agent instalado en estos dispositivos desde 23.1R1-EVO hasta 23.2R2-EVO. Este problema no afecta a las versiones anteriores a 23.1R1-EVO."}], "id": "CVE-2024-30406", "lastModified": "2026-01-23T16:28:25.470", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 5.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "HIGH", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:C/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 1.1, "impactScore": 4.0, "source": "sirt@juniper.net", "type": "Secondary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "LOCAL", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.7, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "HIGH", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "HIGH", "subIntegrityImpact": "NONE", "userInteraction": "PASSIVE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "NONE", "vulnConfidentialityImpact": "HIGH", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "sirt@juniper.net", "type": "Secondary"}]}, "published": "2024-04-12T15:15:25.340", "references": [{"source": "sirt@juniper.net", "tags": ["Vendor Advisory"], "url": "https://supportportal.juniper.net/JSA79104"}, {"source": "sirt@juniper.net", "tags": ["Vendor Advisory"], "url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N"}, {"source": "sirt@juniper.net", "tags": ["Technical Description"], "url": "https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/services-paa-test-agent.html"}, {"source": "sirt@juniper.net", "tags": ["Third Party Advisory"], "url": "https://www.juniper.net/documentation/us/en/software/junos/junos-install-upgrade-evo/topics/topic-map/paa-test-agent-install.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://supportportal.juniper.net/JSA79104"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:P/VC:H/VI:N/VA:N/SC:H/SI:N/SA:N"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Technical Description"], "url": "https://www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/services-paa-test-agent.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://www.juniper.net/documentation/us/en/software/junos/junos-install-upgrade-evo/topics/topic-map/paa-test-agent-install.html"}], "sourceIdentifier": "sirt@juniper.net", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-313"}], "source": "sirt@juniper.net", "type": "Secondary"}]}

{}

{"created": "2025-07-12T22:09:44.887401+00:00", "updated": "2025-07-12T22:09:44.887468+00:00", "vendors": ["juniper_networks", "juniper_networks$PRODUCT$junos_os_evolved"]}