CVE-2018-0047
Junos Space Security Director: XSS vulnerability in web administration
Vexday Risk Score
21Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS 8EPSS 0.9%KEV nãoPoC —Nuclei —Metasploit —Patch —
Ciclo de vida
10 oct 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A persistent cross-site scripting vulnerability in the UI framework used by Junos Space Security Director may allow authenticated users to inject persistent and malicious scripts. This may allow stealing of information or performing actions as a different user when other users access the Security Director web interface. This issue affects all versions of Juniper Networks Junos Space Security Director prior to 17.2R2.
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
Productos afectados
Juniper Networks · Junos Space Security Director¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →