3 matches found
CVE-2020-1673
Insufficient Cross-Site Scripting XSS protection in Juniper Networks J-Web and web based HTTP/HTTPS services allows an unauthenticated attacker to hijack the target user's HTTP/HTTPS session and perform administrative actions on the Junos device as the targeted user. This issue only affects Junip...
CVE-2020-1673 Junos OS: Reflected Cross-site Scripting vulnerability in J-Web and web based (HTTP/HTTPS) services
Insufficient Cross-Site Scripting XSS protection in Juniper Networks J-Web and web based HTTP/HTTPS services allows an unauthenticated attacker to hijack the target user's HTTP/HTTPS session and perform administrative actions on the Junos device as the targeted user. This issue only affects Junip...
CVE-2020-1673
CVE-2020-1673 is a J-Web/XSS vulnerability in Juniper Networks Junos OS where insufficient XSS protection on HTTP/HTTPS web services can allow an unauthenticated attacker to hijack a user session and impersonate the targeted user’s admin actions. Affected products are Junos OS devices with HTTP/H...