Cross-Site Scripting Vulnerability in Junos Space by Juniper Networks
CVE-2025-59997
5.1MEDIUM
Key Information:
- Vendor
Juniper Networks
- Status
- Vendor
- CVE Published:
- 9 October 2025
Badges
👾 Exploit Exists
What is CVE-2025-59997?
A Cross-Site Scripting (XSS) vulnerability exists in Juniper Networks' Junos Space, allowing attackers to inject malicious script tags into the CLI Configlets pages. When a victim accesses these compromised pages, the injected scripts execute with the victim's permissions. This could lead to unauthorized command execution, including potential administrative actions, affecting all versions of Junos Space prior to 24.1R4. Users are urged to update to secure versions to mitigate this risk.
Affected Version(s)
Junos Space 0 < 24.1R4