Vulnerability Description
Cross-site scripting (XSS) vulnerability in the web-based interface in Juniper Junos Space before 13.1R1.6, as used on the JA1500 appliance and in other contexts, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka PR 884469.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos Space | 11.1 |
| Juniper | Junos Space Virtual Appliance | - |
| Juniper | Junos Space Ja1500 Appliance | - |
Related Weaknesses (CWE)
References
- http://kb.juniper.net/JSA10585Vendor Advisory
- http://www.securitytracker.com/id/1028923
- http://kb.juniper.net/JSA10585Vendor Advisory
- http://www.securitytracker.com/id/1028923
FAQ
What is CVE-2013-5095?
CVE-2013-5095 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in the web-based interface in Juniper Junos Space before 13.1R1.6, as used on the JA1500 appliance and in other contexts, allows remote attackers to inject arb...
How severe is CVE-2013-5095?
CVE-2013-5095 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5095?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos Space, Juniper Junos Space Virtual Appliance, Juniper Junos Space Ja1500 Appliance.