What is CVE-2017-2307?

CVE-2017-2307 is a medium-severity vulnerability in Juniper Junos_space, classified under Cross-site Scripting. CVSS score: 6.1/10. Published 2017-05-30.

How severe is CVE-2017-2307?

Medium severity. CVSS v3 base score is 6.1 out of 10.

XSS in Juniper Junos_space

CVE-2017-2307

A reflected cross site scripting vulnerability in the administrative interface of Juniper Networks Junos Space versions prior to 16.1R1 may allow remote attackers to steal sensitive information or perform certain administrative actions on…

Vulnerability class: XSS (Cross-Site Scripting)

EPSS: 0.002 (47.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.1 (Medium). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N.

Affected products

Juniper Junos_space
Juniper Networks Junos Space — versions versions prior to 16.1R1

Weakness classification (CWE)

CWE-79 — Cross-site Scripting

References

sirt@juniper.net (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
sirt@juniper.net (x_refsource_CONFIRM, Vendor Advisory)

Frequently asked questions

What is CVE-2017-2307?: CVE-2017-2307 is a medium-severity vulnerability in Juniper Junos_space, classified under Cross-site Scripting. CVSS score: 6.1/10. Published 2017-05-30.
How severe is CVE-2017-2307?: Medium severity. CVSS v3 base score is 6.1 out of 10.