Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
junos space vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2016-4927
Insufficient validation of SSH keys in Junos Space prior to 15.2R2 allows man-in-the-middle (MITM) type of attacks while a Space device is communicating with managed devices.
Juniper Junos Space
6.8
CVSSv2
CVE-2016-4928
Cross site request forgery vulnerability in Junos Space prior to 15.2R2 allows remote malicious users to perform certain administrative actions on Junos Space.
Juniper Junos Space
6.5
CVSSv2
CVE-2019-0017
The Junos Space application, which allows Device Image files to be uploaded, has insufficient validity checking which may allow uploading of malicious images or scripts, or other content types. Affected releases are Juniper Networks Junos Space versions before 18.3R1.
Juniper Junos Space 14.1
Juniper Junos Space 17.2
Juniper Junos Space 18.1
Juniper Junos Space 18.2
Juniper Junos Space 13.3
Juniper Junos Space 15.1
Juniper Junos Space 15.2
Juniper Junos Space 17.1
Juniper Junos Space 16.1
6.5
CVSSv2
CVE-2017-2305
On Juniper Networks Junos Space versions before 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can create privileged users, allowing privilege escalation.
Juniper Junos Space
6.5
CVSSv2
CVE-2017-2306
On Juniper Networks Junos Space versions before 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can execute code on the device.
Juniper Junos Space
6.1
CVSSv2
CVE-2019-0038
Crafted packets destined to the management interface (fxp0) of an SRX340 or SRX345 services gateway may create a denial of service (DoS) condition due to buffer space exhaustion. This issue only affects the SRX340 and SRX345 services gateways. No other products or platforms are a...
Juniper Junos 17.4
Juniper Junos 18.1
Juniper Junos 18.2
Juniper Junos 18.3
Juniper Junos 15.1x49
Juniper Junos 17.3
6
CVSSv2
CVE-2017-10612
A persistent site scripting vulnerability in Juniper Networks Junos Space allows users who can change certain configuration to implant malicious Javascript or HTML which may be used to steal information or perform actions as other Junos Space users or administrators. Affected rel...
Juniper Junos Space
5.5
CVSSv2
CVE-2019-0016
A malicious authenticated user may be able to delete a device from the Junos Space database without the necessary privileges through crafted Ajax interactions obtained from another legitimate delete action performed by another administrative user. Affected releases are Juniper Ne...
Juniper Junos Space 15.1
Juniper Junos Space 16.1
Juniper Junos Space 13.3
Juniper Junos Space 14.1
Juniper Junos Space 15.2
Juniper Junos Space 17.1
Juniper Junos Space 17.2
Juniper Junos Space 18.1
Juniper Junos Space 18.2
5.1
CVSSv2
CVE-2017-10624
Insufficient verification of node certificates in Juniper Networks Junos Space may allow a man-in-the-middle type of malicious user to make unauthorized modifications to Space database or add nodes. Affected releases are Juniper Networks Junos Space all versions before 17.1R1.
Juniper Junos Space
5
CVSSv2
CVE-2017-2308
An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions before 16.1R1 may allow an authenticated user to read arbitrary files on the device.
Juniper Junos Space
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »