CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0047

A persistent cross-site scripting vulnerability in the UI framework used by Junos Space Security Director may allow authenticated users to inject persistent and malicious scripts. This may allow stealing of information or performing actions as a different user when other users access the Security Director web interface. This issue affects all versions of Juniper Networks Junos Space Security Director prior to 17.2R2.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.1%

CVSS Severity

CVSS v3 Score 8.0

CVSS v2 Score 3.5

References

Products affected by CVE-2018-0047

Juniper » Junos Space » Version: 13.3

cpe:2.3:o:juniper:junos_space:13.3
Juniper » Junos Space » Version: 14.1

cpe:2.3:o:juniper:junos_space:14.1
Juniper » Junos Space » Version: 15.1

cpe:2.3:o:juniper:junos_space:15.1
Juniper » Junos Space » Version: 15.2

cpe:2.3:o:juniper:junos_space:15.2
Juniper » Junos Space » Version: 16.1

cpe:2.3:o:juniper:junos_space:16.1
Juniper » Junos Space » Version: 17.1

cpe:2.3:o:juniper:junos_space:17.1
Juniper » Junos Space » Version: 17.2

cpe:2.3:o:juniper:junos_space:17.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0047

Products

Pricing

Contact Us