10 matches found
CVE-2025-59968
A Missing Authorization vulnerability in the Juniper Networks Junos Space Security Director allows an unauthenticated network-based attacker to read or modify metadata via the web interface. Tampering with this metadata can result in managed SRX Series devices permitting network traffic that shou...
EUVD-2025-33388
A Missing Authorization vulnerability in the Juniper Networks Junos Space Security Director allows an unauthenticated network-based attacker to read or modify metadata via the web interface. Tampering with this metadata can result in managed SRX Series devices permitting network traffic that...
CVE-2025-59968
A Missing Authorization vulnerability in the Juniper Networks Junos Space Security Director allows an unauthenticated network-based attacker to read or modify metadata via the web interface. Tampering with this metadata can result in managed SRX Series devices permitting network traffic that...
CVE-2025-59974 Junos Space Security Director: Persistent Cross-Site Scripting (XSS) vulnerability
An Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Junos Space Security Director allows an attacker to inject malicious scripts into the application, which are then stored and executed in the context of other users' browsers when they access...
PT-2025-41407
Name of the Vulnerable Software and Affected Versions Juniper Networks Junos Space Security Director versions prior to 24.1R3 Patch V4 Description A missing authorization issue exists in Juniper Networks Junos Space Security Director. An unauthenticated network-based attacker can read or modify...
EUVD-2018-0835
Malware in sbrugna...
The vulnerability in the web interface of the Juniper Networks Junos Space Security Director arises from insufficient protection of the web page structure, allowing attackers to disclose sensitive information or perform actions on behalf of other users.
The vulnerability of the Juniper Networks Junos Space Security Director administrative interface arises due to insufficient protection of the web page structure. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information or perform actions on behalf of other users...
CVE-2018-0047
A persistent cross-site scripting vulnerability in the UI framework used by Junos Space Security Director may allow authenticated users to inject persistent and malicious scripts. This may allow stealing of information or performing actions as a different user when other users access the Security...
CVE-2018-0047
CVE-2018-0047 describes a persistent cross-site scripting (XSS) vulnerability in the UI framework used by Juniper Networks Junos Space Security Director. A remote attacker with authentication can inject persistent scripts that may exfiltrate information or perform actions as another user when oth...
Design/Logic Flaw
A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not have SSH access to a device to reuse the URL that was created for another user to perform SSH access. Affected releases are all versions of Junos Space Security Director prior to 17.2R1...