CVE-2022-22189
Contrail Service Orchestration: An authenticated local user may have their permissions elevated via the device via management interface without authentication
In short
A user already logged into a Contrail Service Orchestration system can escalate their privileges on the local machine without needing additional authentication, gaining full control of that system.
Technical detail
An incorrect ownership assignment vulnerability in CSO 6.0.0 (pre-patch v3) allows an authenticated local user to escalate privileges via the management interface without re-authentication, resulting in unauthorized system control. The attack requires prior local access but bypasses permission checks on the affected on-premises installation.
Summary generated and translated by AI from the official description.
An Incorrect Ownership Assignment vulnerability in Juniper Networks Contrail Service Orchestration (CSO) allows a locally authenticated user to have their permissions elevated without authentication thereby taking control of the local system they are currently authenticated to. This issue affects: Juniper Networks Contrail Service Orchestration 6.0.0 versions prior to 6.0.0 Patch v3 on On-premises installations. This issue does not affect Juniper Networks Contrail Service Orchestration On-premises versions prior to 6.0.0.
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected products
Juniper Networks · Contrail Service OrchestrationWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://kb.juniper.net/JSA69498