CVE-2014-3821
Juniper Junos 11.4-11.4R11, 12.1X44-D34, 12.1X45-D25, 12.1X46-D20, 12.1X47-D10 - XSS in SRX Web Auth
Title source: llmDescription
Cross-site scripting (XSS) vulnerability in SRX Web Authentication (webauth) in Juniper Junos 11.4 before 11.4R11, 12.1X44 before 12.1X44-D34, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10640
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/68548
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1030563
Scores
EPSS
0.0026
EPSS Percentile
49.1%
Details
CWE
CWE-79
Status
published
Products (5)
juniper/junos
11.4
juniper/junos
12.1x44
juniper/junos
12.1x45
juniper/junos
12.1x46
juniper/junos
12.1x47
Published
Jul 11, 2014
Tracked Since
Feb 18, 2026