CVE-2024-30381 Paragon Active Assurance: probe_serviced exposes internal objects to local users

🗓️ 12 Apr 2024 14:56:38Reported by juniperType

Juniper Networks Paragon Active Assurance Control Center vulnerabilit

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerability in the demon probe_serviced component of the testing and monitoring platform for physical, hybrid, and virtual networks, Paragon Active Assurance (previously known as Netrounds), allows a intruder to gain unauthorized access to protected information.	19 Apr 202400:00	–	bdu_fstec
CNNVD	Juniper Networks Paragon Active Assurance 安全漏洞	12 Apr 202400:00	–	cnnvd
CVE	CVE-2024-30381	12 Apr 202414:56	–	cve
EUVD	EUVD-2024-28302	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in Juniper JunOS	12 Apr 202400:00	–	ncsc
NVD	CVE-2024-30381	12 Apr 202415:15	–	nvd
OSV	CVE-2024-30381	12 Apr 202415:15	–	osv
Positive Technologies	PT-2024-2871 · Juniper Networks · Paragon Active Assurance Control Center	10 Apr 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-30381 Paragon Active Assurance: probe_serviced exposes internal objects to local users	12 Apr 202414:56	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "Paragon Active Assurance",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "4.1.0"
      },
      {
        "status": "affected",
        "version": "4.2.0"
      }
    ]
  }
]

Source	Link
first	www.first.org/cvss/calculator/4.0
supportportal	www.supportportal.juniper.net/JSA79173

16 May 2024 18:01Current

8.3High risk

Vulners AI Score8.3

CVSS 3.18.4

CVSS 48.4

EPSS0.00457

CWE-200