CVE-2017-2307: XSS
First published: Tue May 30 2017(Updated: )
A reflected cross site scripting vulnerability in the administrative interface of Juniper Networks Junos Space versions prior to 16.1R1 may allow remote attackers to steal sensitive information or perform certain administrative actions on Junos Space.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper Networks Junos Space | <=15.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2017-2307?
CVE-2017-2307 is classified as a medium severity vulnerability.
How do I fix CVE-2017-2307?
To fix CVE-2017-2307, upgrade to Junos Space version 16.1R1 or later.
What type of attack is associated with CVE-2017-2307?
CVE-2017-2307 is associated with a reflected cross-site scripting attack.
Who is affected by CVE-2017-2307?
Any administrator using Juniper Networks Junos Space versions prior to 16.1R1 is affected by CVE-2017-2307.
What can attackers do exploiting CVE-2017-2307?
Attackers exploiting CVE-2017-2307 may steal sensitive information or perform unauthorized administrative actions.
- agent/type
- agent/references
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/juniper
- canonical/juniper networks junos space
- version/juniper networks junos space/15.2