Vulnerability Description
Cross-site scripting (XSS) vulnerability in SRX Web Authentication (webauth) in Juniper Junos 11.4 before 11.4R11, 12.1X44 before 12.1X44-D34, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Juniper | Junos | 11.4 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/68548
- http://www.securitytracker.com/id/1030563
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10640Vendor Advisory
- http://www.securityfocus.com/bid/68548
- http://www.securitytracker.com/id/1030563
- https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10640Vendor Advisory
FAQ
What is CVE-2014-3821?
CVE-2014-3821 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in SRX Web Authentication (webauth) in Juniper Junos 11.4 before 11.4R11, 12.1X44 before 12.1X44-D34, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, a...
How severe is CVE-2014-3821?
CVE-2014-3821 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-3821?
Check the references section above for vendor advisories and patch information. Affected products include: Juniper Junos.