First published: Wed Jan 10 2018(Updated: )
A reflected cross site scripting (XSS) vulnerability in Junos Space may potentially allow a remote authenticated user to inject web script or HTML and steal sensitive data and credentials from a session, and to perform administrative actions on the Junos Space network management device.
Credit: sirt@juniper.net
Affected Software | Affected Version | How to fix |
---|---|---|
Juniper Junos Space | =13.3-r1 | |
Juniper Junos Space | =13.3-r2 | |
Juniper Junos Space | =13.3-r4 | |
Juniper Junos Space | =14.1-r1 | |
Juniper Junos Space | =14.1-r2 | |
Juniper Junos Space | =14.1-r3 | |
Juniper Junos Space | =15.1-r1 | |
Juniper Junos Space | =15.1-r2 | |
Juniper Junos Space | =15.1-r3 | |
Juniper Junos Space | =15.2-r1 | |
Juniper Junos Space | =15.2-r2 | |
Juniper Junos Space | =16.1-r1 | |
Juniper Junos Space | =16.1-r2 | |
Juniper Junos Space | =16.1-r3 | |
Juniper Junos Space | =17.1-r1 |
The following software releases have been updated to resolve this specific issue: Junos Space 17.2R1 and all subsequent releases.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.