How severe is CVE-2024-30406?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.5 out of 10.

What type of vulnerability is CVE-2024-30406?

This is classified as CWE-313, which is a common weakness in software security.

CVE-2024-30406 - MEDIUM Severity | CVSS 5.5

Vulnerability Description

A Cleartext Storage in a File on Disk vulnerability in Juniper Networks Junos OS Evolved ACX Series devices using the Paragon Active Assurance Test Agent software installed on network devices allows a local, authenticated attacker with high privileges to read all other users login credentials. This issue affects only Juniper Networks Junos OS Evolved ACX Series devices using the Paragon Active Assurance Test Agent software installed on these devices from 23.1R1-EVO through 23.2R2-EVO. This issue does not affect releases before 23.1R1-EVO.

Related Vulnerabilities

CVE-2023-0114

MEDIUM

CVSS:5.5(Medium)

A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. Th...

CWE-3132023

CVE-2023-2863

MEDIUM

CVSS:5.5(Medium)

A vulnerability has been found in Simple Design Daily Journal 1.012.GP.B on Android and classified as problematic. Affected by this vulnerability is an unknown functionality of the component SQLite Da...

CWE-3132023

CVE-2023-4066

MEDIUM

CVSS:5.5(Medium)

A flaw was found in Red Hat's AMQ Broker, which stores certain passwords in a secret security-properties-prop-module, defined in ActivemqArtemisSecurity CR; however, they are shown in plaintext in the...

CWE-3132023

CVE-2024-9040

MEDIUM

CVSS:5.5(Medium)

A vulnerability, which was classified as problematic, was found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the component Password Handler. The manipulation lead...

CWE-3132024

CVE-2023-35699

MEDIUM

CVSS:4.6(Medium)

Cleartext Storage on Disk in the SICK ICR890-4 could allow an unauthenticated attacker with local access to the device to disclose sensitive information by accessing a SD card.

CWE-3132023

CVE-2024-38280

HIGH

CVSS:4.6(Medium)

An unauthorized user is able to gain access to sensitive data, including credentials, by physically retrieving the hard disk of the product as the data is stored in clear text.

CWE-3132024