CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2014-3821

Cross-site scripting (XSS) vulnerability in SRX Web Authentication (webauth) in Juniper Junos 11.4 before 11.4R11, 12.1X44 before 12.1X44-D34, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.9%

CVSS Severity

CVSS v2 Score 4.3

References

http://www.securityfocus.com/bid/68548
http://www.securitytracker.com/id/1030563
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10640
http://www.securityfocus.com/bid/68548
http://www.securitytracker.com/id/1030563
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10640

Products affected by CVE-2014-3821

Juniper » Junos » Version: 11.4

cpe:2.3:o:juniper:junos:11.4
Juniper » Junos » Version: 12.1x44

cpe:2.3:o:juniper:junos:12.1x44
Juniper » Junos » Version: 12.1x45

cpe:2.3:o:juniper:junos:12.1x45
Juniper » Junos » Version: 12.1x46

cpe:2.3:o:juniper:junos:12.1x46
Juniper » Junos » Version: 12.1x47

cpe:2.3:o:juniper:junos:12.1x47

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2014-3821

Products

Pricing

Contact Us