Unrated severityNVD Advisory· Published Apr 12, 2024· Updated Aug 2, 2024
Junos OS Evolved: ACX Series with Paragon Active Assurance Test Agent: A local high privileged attacker can recover other administrators credentials
CVE-2024-30406
Description
A Cleartext Storage in a File on Disk vulnerability in Juniper Networks Junos OS Evolved ACX Series devices using the Paragon Active Assurance Test Agent software installed on network devices allows a local, authenticated attacker with high privileges to read all other users login credentials.
This issue affects only Juniper Networks Junos OS Evolved ACX Series devices using the Paragon Active Assurance Test Agent software installed on these devices from 23.1R1-EVO through 23.2R2-EVO.
This issue does not affect releases before 23.1R1-EVO.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: 23.1R1-EVO through 23.2R2-EVO
- Range: 23.1R1-EVO
Patches
Vulnerability mechanics
References
4- supportportal.juniper.net/JSA79104mitrevendor-advisory
- www.first.org/cvss/calculator/4.0mitretechnical-description
- www.juniper.net/documentation/us/en/software/junos/cli-reference/topics/ref/statement/services-paa-test-agent.htmlmitreproduct
- www.juniper.net/documentation/us/en/software/junos/junos-install-upgrade-evo/topics/topic-map/paa-test-agent-install.htmlmitreproduct
News mentions
0No linked articles in our index yet.