CVE-2022-22187

HIGH

Juniper Identity Management Service < 1.4.0 - Improper Privilege Management

Title source: rule

Description

An Improper Privilege Management vulnerability in the Windows Installer framework used in the Juniper Networks Juniper Identity Management Service (JIMS) allows an unprivileged user to trigger a repair operation. Running a repair operation, in turn, will trigger a number of file operations in the %TEMP% folder of the user triggering the repair. Some of these operations will be performed from a SYSTEM context (started via the Windows Installer service), including the execution of temporary files. An attacker may be able to provide malicious binaries to the Windows Installer, which will be executed with high privilege, leading to a local privilege escalation. This issue affects Juniper Networks Juniper Identity Management Service (JIMS) versions prior to 1.4.0.

References (2)

Core 2

Core References

Permissions Required, Vendor Advisory x_refsource_confirm

https://kb.juniper.net/JSA69495

Third Party Advisory x_refsource_misc

https://github.com/mandiant/Vulnerability-Disclosures/blob/master/2022/MNDT-2022-0029/MNDT-2022-0029.md

View Writeup ZIP pw:eip

Scores

CVSS v3 7.8

EPSS 0.0004

EPSS Percentile 11.2%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-269

Status published

Products (1)

juniper/identity_management_service < 1.4.0

Published Apr 14, 2022

Tracked Since Feb 18, 2026