// For flags

CVE-2022-22190

Paragon Active Assurance Control Center: Information disclosure vulnerability in crafted URL

Severity Score

7.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

An Improper Access Control vulnerability in the Juniper Networks Paragon Active Assurance Control Center allows an unauthenticated attacker to leverage a crafted URL to generate PDF reports, potentially containing sensitive configuration information. A feature was introduced in version 3.1 of the Paragon Active Assurance Control Center which allows users to selective share account data using a unique identifier. Knowing the proper format of the URL and the identifier of an existing object in an application it is possible to get access to that object without being logged in, even if the object is not shared, resulting in the opportunity for malicious exfiltration of user data. Note that the Paragon Active Assurance Control Center SaaS offering is not affected by this issue. This issue affects Juniper Networks Paragon Active Assurance version 3.1.0.

Una vulnerabilidad de Control de Acceso Inapropiado en Juniper Networks Paragon Active Assurance Control Center permite a un atacante no autenticado aprovechar una URL diseñada para generar informes en PDF, que pueden contener información de configuración confidencial. En la versión 3.1 de Paragon Active Assurance Control Center fue introducida una funcionalidad que permite a usuarios compartir selectivamente los datos de la cuenta usando un identificador único. Conociendo el formato apropiado de la URL y el identificador de un objeto existente en una aplicación es posible conseguir acceso a ese objeto sin estar conectado, incluso si el objeto no es compartido, resultando en una oportunidad de exfiltración maliciosa de los datos del usuario. Tenga en cuenta que la oferta SaaS de Paragon Active Assurance Control Center no está afectada por este problema. Este problema afecta a Juniper Networks Paragon Active Assurance versión 3.1.0

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Changed
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2021-12-21 CVE Reserved
  • 2022-04-14 CVE Published
  • 2023-11-05 EPSS Updated
  • 2024-09-16 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-284: Improper Access Control
  • CWE-639: Authorization Bypass Through User-Controlled Key
CAPEC
References (1)
URL Tag Source
URL Date SRC
URL Date SRC
URL Date SRC
https://kb.juniper.net/JSA69500 2023-06-27
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Juniper
Search vendor "Juniper"
 Paragon Active Assurance Control Center
Search vendor "Juniper" for product "Paragon Active Assurance Control Center"
 3.1.0
Search vendor "Juniper" for product "Paragon Active Assurance Control Center" and version "3.1.0"
-
Affected