What is CVE-2017-10612?

CVE-2017-10612 is a high-severity vulnerability in Juniper Junos_space, classified under Cross-site Scripting. CVSS score: 8.0/10. Published 2017-10-13.

How severe is CVE-2017-10612?

High severity. CVSS v3 base score is 8.0 out of 10.

XSS in Juniper Junos_space

CVE-2017-10612

A persistent site scripting vulnerability in Juniper Networks Junos Space allows users who can change certain configuration to implant malicious Javascript or HTML which may be used to steal information or perform actions as other Junos Sp…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.004 (60.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.0 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H.

Affected products

Juniper Junos_space
Juniper Networks Junos Space — versions versions prior to 17.1R1

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

References

sirt@juniper.net (x_refsource_CONFIRM, Vendor Advisory)
sirt@juniper.net (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2017-10612?: CVE-2017-10612 is a high-severity vulnerability in Juniper Junos_space, classified under Cross-site Scripting. CVSS score: 8.0/10. Published 2017-10-13.
How severe is CVE-2017-10612?: High severity. CVSS v3 base score is 8.0 out of 10.