Shodan
Vulnerabilities
Vulnerable Software
Juniper:  >> Junos Space  Security Vulnerabilities
CVE-2017-2305
On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can create privileged users, allowing privilege escalation.
CVSS Score
8.8
EPSS Score
0.003
Published
2017-05-30
CVE-2017-2306
On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can execute code on the device.
CVSS Score
8.8
EPSS Score
0.006
Published
2017-05-30
CVE-2017-2307
A reflected cross site scripting vulnerability in the administrative interface of Juniper Networks Junos Space versions prior to 16.1R1 may allow remote attackers to steal sensitive information or perform certain administrative actions on Junos Space.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-05-30
CVE-2016-4926
Insufficient authentication vulnerability in Junos Space before 15.2R2 allows remote network based users with access to Junos Space web interface to perform certain administrative tasks without authentication.
CVSS Score
9.8
EPSS Score
0.036
Published
2017-03-20
CVE-2016-4927
Insufficient validation of SSH keys in Junos Space before 15.2R2 allows man-in-the-middle (MITM) type of attacks while a Space device is communicating with managed devices.
CVSS Score
8.1
EPSS Score
0.004
Published
2017-03-20
CVE-2016-4928
Cross site request forgery vulnerability in Junos Space before 15.2R2 allows remote attackers to perform certain administrative actions on Junos Space.
CVSS Score
8.8
EPSS Score
0.002
Published
2017-03-20
CVE-2016-4929
Command injection vulnerability in Junos Space before 15.2R2 allows attackers to execute arbitrary code as a root user.
CVSS Score
8.8
EPSS Score
0.021
Published
2017-03-20
CVE-2016-4930
Cross-site scripting (XSS) vulnerability in Junos Space before 15.2R2 allows remote attackers to steal sensitive information or perform certain administrative actions.
CVSS Score
6.1
EPSS Score
0.002
Published
2017-03-20
CVE-2016-4931
XML entity injection in Junos Space before 15.2R2 allows attackers to cause a denial of service.
CVSS Score
6.5
EPSS Score
0.003
Published
2017-03-20
CVE-2015-2620
Unspecified vulnerability in Oracle MySQL Server 5.5.43 and earlier and 5.6.23 and earlier allows remote authenticated users to affect confidentiality via unknown vectors related to Server : Security : Privileges.
CVSS Score
4.3
EPSS Score
0.006
Published
2015-07-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved