Risk Scores

Affected Products

Timeline

• Apr 14, 2022 CVE Published
• Apr 15, 2022 EPSS Score
• Apr 26, 2022 EPSS Score
• Jun 4, 2022 EPSS Score
• Jul 24, 2022 EPSS Score
• Sep 12, 2022 EPSS Score
• Oct 31, 2022 EPSS Score
• Dec 20, 2022 EPSS Score
• Feb 8, 2023 EPSS Score
• Mar 29, 2023 EPSS Score
• May 18, 2023 EPSS Score
• Jul 6, 2023 EPSS Score

References

• https://supportportal.juniper.net/s/article/2022-04-Security-Bulletin-Juniper-Secure-Analytics-JSA-Series-Heap-Based-Buffer-Overflow-in-Sudo-CVE-2021-3156?language=en_US advisory
• https://supportportal.juniper.net/s/article/2022-04-Security-Bulletin-JIMS-Local-Privilege-Escalation-vulnerability-via-repair-functionality-CVE-2022-22187?language=en_US advisory
• https://supportportal.juniper.net/s/article/2022-04-Security-Bulletin-Paragon-Active-Assurance-Local-Privilege-Escalation-in-polkits-pkexec-CVE-2021-4034?language=en_US advisory
• https://supportportal.juniper.net/s/article/2022-04-Security-Bulletin-Contrail-Service-Orchestration-An-authenticated-local-user-may-have-their-permissions-elevated-via-the-device-via-management-interface-without-authentication-CVE-2022-22189?language=en_US advisory
• https://supportportal.juniper.net/s/article/2022-04-Security-Bulletin-Contrail-Networking-Multiple-vulnerabilities-resolved-in-Contrail-Networking-21-3-CVE-yyyy-nnnn?language=en_US advisory
• https://supportportal.juniper.net/s/article/2022-04-Security-Bulletin-Paragon-Active-Assurance-Control-Center-Information-disclosure-vulnerability-in-crafted-URL-CVE-2022-22190?language=en_US advisory
• https://supportportal.juniper.net/s/article/2022-04-Security-Bulletin-Contrail-Networking-Multiple-Vulnerabilities-have-been-resolved-in-Contrail-Networking-release-2011-L4?language=en_US advisory
• https://kb.juniper.net/JSA69495 url
• https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0029/MNDT-2022-0029.md url
• https://nvd.nist.gov/vuln/detail/CVE-2022-22187 advisory