CVE-2017-2307

6.1MEDIUM

Key Information:

Vendor: Juniper Networks
Status: Junos Space
Vendor: CVE Published:; 30 May 2017

Summary

A reflected cross site scripting vulnerability in the administrative interface of Juniper Networks Junos Space versions prior to 16.1R1 may allow remote attackers to steal sensitive information or perform certain administrative actions on Junos Space.

Affected Version(s)

Junos Space versions prior to 16.1R1

References

http://www.securityfocus.com/bid/98749

vdb-entryx_refsource_BID

https://kb.juniper.net/JSA10770

x_refsource_CONFIRM

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Changed

Timeline

Vulnerability published
May 30, 2017
Vulnerability Reserved
Dec 1, 2016

Collectors

NVD DatabaseMitre Database