Описание
A reflected cross-site scripting vulnerability in OpenNMS included with Juniper Networks Junos Space may allow the stealing of sensitive information or session credentials from Junos Space administrators or perform administrative actions. This issue affects Juniper Networks Junos Space versions prior to 18.2R1.
Ссылки
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- PatchThird Party Advisory
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- PatchThird Party Advisory
- Vendor Advisory
Уязвимые конфигурации
EPSS
8.8 High
CVSS3
6.1 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
Связанные уязвимости
A reflected cross-site scripting vulnerability in OpenNMS included with Juniper Networks Junos Space may allow the stealing of sensitive information or session credentials from Junos Space administrators or perform administrative actions. This issue affects Juniper Networks Junos Space versions prior to 18.2R1.
Уязвимость системы мониторинга OpenNMS платформы управления сетью Juniper Networks Junos Space Network Management Platform, вызванная недостаточной защитой структуры веб-страницы, позволяющая нарушителю раскрыть защищаемую информацию или выполнить действия от имени администратора
EPSS
8.8 High
CVSS3
6.1 Medium
CVSS3
4.3 Medium
CVSS2