Clickjacking Vulnerability in Juniper Networks Paragon Automation
CVE-2025-52987

5.1MEDIUM

Key Information:

Vendor: Juniper Networks
Status: Paragon Automation (pathfinder, Planner, Insights)
Vendor: CVE Published:; 15 January 2026

🔔 Create Juniper Networks Vulnerability Alert

Badges

👾 Exploit Exists

What is CVE-2025-52987?

A clickjacking vulnerability has been identified in Juniper Networks Paragon Automation, including the Pathfinder, Planner, and Insights applications. The vulnerability arises from the absence of proper X-Frame-Options and X-Content-Type HTTP headers, allowing attackers to manipulate the user interface. This could enable malicious actors to execute unintended actions on behalf of unsuspecting users, thereby compromising system integrity and user data security. It is imperative for users of all versions prior to 24.1.1 to be aware of this vulnerability and take necessary precautions to safeguard their systems.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Paragon Automation (Pathfinder, Planner, Insights) 0 < 24.1.1

References

https://supportportal.juniper.net/

vendor-advisory

https://kb.juniper.net/JSA103145

vendor-advisory

CVSS V4

Score:

5.1

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Timeline

👾
Exploit known to exist
Jan 15, 2026
Vulnerability published
Jan 15, 2026
Vulnerability Reserved
Jun 23, 2025

JSON

Juniper Networks

Badges

What is CVE-2025-52987?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

Affected Version(s)

References

CVSS V4

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.