cvedb.io
CVE-2018-0047
HIGH · CVSS 8
EPSS exploitation probability: 0%
Published 2018-10-10T18:29:01.517 · Last modified 2026-06-17T01:29:28.500

Summary

A persistent cross-site scripting vulnerability in the UI framework used by Junos Space Security Director may allow authenticated users to inject persistent and malicious scripts. This may allow stealing of information or performing actions as a different user when other users access the Security Director web interface. This issue affects all versions of Juniper Networks Junos Space Security Director prior to 17.2R2.

Affected products

juniper — junos_space

Does this affect you?

Add your gear to cvedb and we'll alert you only when juniper ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.