Lucene search
K

7 matches found

BDU FSTEC
BDU FSTEC
added 2019/02/21 12:0 a.m.5 views

The vulnerability of the Email Collectors component in the Juniper ATP intrusion prevention system allows a intruder to inject any arbitrary JavaScript code into the uploaded page and gain access to protected data.

The vulnerability of the Email Collectors component in the Juniper ATP intrusion prevention system is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to inject arbitrary JavaScript code into the uploaded page and gain access to protected da...

5.4CVSS6.1AI score0.00633EPSS
Exploits0References4Affected Software1
CNVD
CNVD
added 2019/01/18 12:0 a.m.4 views

Juniper ATP Cross-Site Scripting Vulnerability (CNVD-2019-24384)

Juniper Advanced Threat Prevention ATP is a suite of advanced threat protection platforms from Juniper Networks. The product supports malware detection, file analysis, and malicious IP address and URL blocking. A cross-site scripting vulnerability exists in the Email Collectors menu in Juniper AT...

5.4CVSS6.4AI score0.00633EPSS
Exploits0References1
OSV
OSV
added 2019/01/15 9:29 p.m.6 views

CVE-2019-0024

A persistent cross-site scripting XSS vulnerability in the Email Collectors menu of Juniper ATP may allow authenticated user to inject arbitrary script and steal sensitive data and credentials from a web administration session, possibly tricking a follow-on administrative user to perform...

5.4CVSS5.8AI score0.00633EPSS
Exploits0References1
NVD
NVD
added 2019/01/15 9:29 p.m.18 views

CVE-2019-0024

A persistent cross-site scripting XSS vulnerability in the Email Collectors menu of Juniper ATP may allow authenticated user to inject arbitrary script and steal sensitive data and credentials from a web administration session, possibly tricking a follow-on administrative user to perform...

5.4CVSS5.4AI score0.00633EPSS
Exploits0References1
Prion
Prion
added 2019/01/15 9:29 p.m.19 views

Cross site scripting

A persistent cross-site scripting XSS vulnerability in the Email Collectors menu of Juniper ATP may allow authenticated user to inject arbitrary script and steal sensitive data and credentials from a web administration session, possibly tricking a follow-on administrative user to perform...

3.5CVSS5.3AI score0.00633EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/01/15 9:0 p.m.52 views

CVE-2019-0024

Summary: CVE-2019-0024 is a persistent XSS vulnerability in Juniper ATP, specifically in the Email Collectors menu. Multiple sources confirm that authenticated users can inject arbitrary scripts, potentially exfiltrating data and credentials from a web administration session and possibly tricking...

5.4CVSS5.4AI score0.00633EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2019/01/15 9:0 p.m.22 views

CVE-2019-0024 Juniper ATP: Persistent Cross-Site Scripting vulnerability in the Email Collectors menu

A persistent cross-site scripting XSS vulnerability in the Email Collectors menu of Juniper ATP may allow authenticated user to inject arbitrary script and steal sensitive data and credentials from a web administration session, possibly tricking a follow-on administrative user to perform...

5.4CVSS5.4AI score0.00633EPSS
Exploits0References1
Rows per page
Query Builder