Unspecified Cross-Site Scripting (XSS) Vulnerability in J-Web in Juniper Junos

Unspecified Cross-Site Scripting (XSS) Vulnerability in J-Web in Juniper Junos

CVE-2014-2712 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 10.0S25, 10.4 before 10.4R10, 11.4 before 11.4R11, 12.1 before 12.1R9, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, 12.1X46 before 12.1X46-D10, and 12.2 before 12.2R1 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters to index.php.

Learn more about our Cis Benchmark Audit For Juniper.