Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
JuniperJunos Space

9 matches found

CVE
CVEadded 2020/01/15 9:15 a.m.63 views

CVE-2020-1611

A Local File Inclusion vulnerability in Juniper Networks Junos Space allows an attacker to view all files on the target when the device receives malicious HTTP packets. This issue affects: Juniper Networks Junos Space versions prior to 19.4R1.

6.5CVSS6.3AI score0.05435EPSS
CVE
CVEadded 2021/01/15 6:15 p.m.59 views

CVE-2021-0220

The Junos Space Network Management Platform has been found to store shared secrets in a recoverable format that can be exposed through the UI. An attacker who is able to execute arbitrary code in the victim browser (for example via XSS) or access cached contents may be able to obtain a copy of cred...

6.8CVSS6.9AI score0.00275EPSS
CVE
CVEadded 2019/01/15 9:29 p.m.56 views

CVE-2019-0016

A malicious authenticated user may be able to delete a device from the Junos Space database without the necessary privileges through crafted Ajax interactions obtained from another legitimate delete action performed by another administrative user. Affected releases are Juniper Networks Junos Space ...

6.5CVSS6.5AI score0.00168EPSS
CVE
CVEadded 2018/01/10 10:29 p.m.51 views

CVE-2018-0013

A local file inclusion vulnerability in Juniper Networks Junos Space Network Management Platform may allow an authenticated user to retrieve files from the system.

6.5CVSS6.6AI score0.00252EPSS
CVE
CVEadded 2017/05/30 2:29 p.m.49 views

CVE-2017-2307

A reflected cross site scripting vulnerability in the administrative interface of Juniper Networks Junos Space versions prior to 16.1R1 may allow remote attackers to steal sensitive information or perform certain administrative actions on Junos Space.

6.1CVSS6.5AI score0.00239EPSS
CVE
CVEadded 2017/05/30 2:29 p.m.39 views

CVE-2017-2308

An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to read arbitrary files on the device.

6.5CVSS7.1AI score0.00276EPSS
CVE
CVEadded 2018/01/10 10:29 p.m.39 views

CVE-2018-0010

A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not have SSH access to a device to reuse the URL that was created for another user to perform SSH access. Affected releases are all versions of Junos Space Security Director prior to 17.2R1.

6.5CVSS6.4AI score0.00144EPSS
CVE
CVEadded 2017/03/20 8:59 p.m.34 views

CVE-2016-4931

XML entity injection in Junos Space before 15.2R2 allows attackers to cause a denial of service.

6.5CVSS7AI score0.00269EPSS
CVE
CVEadded 2017/03/20 8:59 p.m.30 views

CVE-2016-4930

Cross-site scripting (XSS) vulnerability in Junos Space before 15.2R2 allows remote attackers to steal sensitive information or perform certain administrative actions.

6.1CVSS6.4AI score0.00239EPSS