CVE-2018-0011

A reflected cross site scripting (XSS) vulnerability in Junos Space may potentially allow a remote authenticated user to inject web script or HTML and steal sensitive data and credentials from a session, and to perform administrative actions on the Junos Space network management device.
Cross-site Scripting
Severity
MEDIUM
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N
Atk. Vector
NETWORK
Atk. Complexity
LOW
Priv. Required
LOW
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
VendorProductVersion
juniperjunos_space
13.3
juniperjunos_space
13.3
juniperjunos_space
13.3
juniperjunos_space
14.1
juniperjunos_space
14.1
juniperjunos_space
14.1
juniperjunos_space
15.1
juniperjunos_space
15.1
juniperjunos_space
15.1
juniperjunos_space
15.2
juniperjunos_space
15.2
juniperjunos_space
16.1
juniperjunos_space
16.1
juniperjunos_space
16.1
juniperjunos_space
17.1
𝑥
= Vulnerable software versions