Paragon Active Assurance: Enabling the timescaledb enables IP forwarding

CVE-2023-28971

What is CVE-2023-28971?

A vulnerability exists in the timescaledb feature of Juniper Networks' Paragon Active Assurance that allows attackers to bypass critical firewall restrictions set for internal communications. This issue primarily affects customers managing their own on-premises Control Centers, where the timescaledb feature, when activated, disrupts existing firewall configurations. This results in unintended communication pathways between Test Agents and the Control Center, potentially exposing sensitive internal data. It's crucial to note that this vulnerability does not impact customers utilizing the Software as a Service (SaaS) version of Paragon Active Assurance, as the problematic service is not enabled.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References