Primary

Context

Juniper Networks Paragon Automation Clickjacking Vulnerability

Vulnerability

A clickjacking vulnerability has been identified in the web portal of Juniper Networks Paragon Automation, including the Pathfinder, Planner, and Insights components. This vulnerability arises from the application's failure to implement proper X-Frame-Options and X-Content-Type HTTP headers, allowing attackers to manipulate users into interacting with the interface under their control. All versions of Paragon Automation prior to 24.1.1 are affected.

Impact

Exploitation of this vulnerability could lead to unauthorized interaction with the web portal, allowing attackers to manipulate user actions and potentially access sensitive information or functionalities within the application.

Remediation

Users can upgrade to Paragon Automation version 24.1.1 or any subsequent release to address this vulnerability.

Added: Jan 15, 2026, 9:44 PM

Updated: Jan 15, 2026, 9:44 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.7

exploitability

6.4

remediation

0.0

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.7

exploitability

6.4

remediation

0.0

relevance

2.1

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Juniper Networks Paragon Automation Clickjacking Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating