Description
Cross-site scripting (XSS) vulnerability in the web-based interface in Juniper Junos Space before 13.1R1.6, as used on the JA1500 appliance and in other contexts, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka PR 884469.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://kb.juniper.net/JSA10585
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1028923
Scores
EPSS
0.0026
EPSS Percentile
49.6%
Details
CWE
CWE-79
Status
published
Products (9)
juniper/junos_space
11.1
juniper/junos_space
11.2
juniper/junos_space
11.3
juniper/junos_space
11.4
juniper/junos_space
12.1
juniper/junos_space
12.2
juniper/junos_space
12.3
juniper/junos_space_ja1500_appliance
juniper/junos_space_virtual_appliance
Published
Aug 16, 2013
Tracked Since
Feb 18, 2026