| Title | IVE OS の Juniper Junos Pulse Secure Access Service デバイスにおけるクリックジャッキング攻撃を実行される脆弱性 |
|---|---|
| Summary | IVE OS の Juniper Junos Pulse Secure Access Service (SSL VPN) デバイスには、クリックジャッキング攻撃を実行される脆弱性が存在します。 |
| Possible impacts | 第三者により、クリックジャッキング攻撃を実行される可能性があります。 |
| Solution | ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。 |
| Publication Date | Sept. 10, 2014, midnight |
| Registration Date | Oct. 2, 2014, 3:48 p.m. |
| Last Update | Oct. 2, 2014, 3:48 p.m. |
| CVSS2.0 : 警告 | |
| Score | 4.3 |
|---|---|
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
| ジュニパーネットワークス |
| Juniper FIPS Secure Access 4000 |
| Juniper FIPS Secure Access 4500 |
| Juniper FIPS Secure Access 6000 |
| Juniper FIPS Secure Access 6500 |
| Juniper MAG2600 Gateway |
| Juniper MAG4610 Gateway |
| Juniper MAG6610 Gateway |
| Juniper MAG6611 Gateway |
| Juniper Secure Access 2000 |
| Juniper Secure Access 2500 |
| Juniper Secure Access 4000 |
| Juniper Secure Access 4500 |
| Juniper Secure Access 6000 |
| Juniper Secure Access 6500 |
| Juniper Secure Access 700 |
| Junos Pulse Secure Access Service (IVE OS) 7.1r18 未満の 7.1 |
| Junos Pulse Secure Access Service (IVE OS) 7.4r5 未満の 7.4 |
| Junos Pulse Secure Access Service (IVE OS) 8.0r1 未満の 8.0 |
| No | Changed Details | Date of change |
|---|---|---|
| 0 | [2014年10月02日] 掲載 |
Feb. 17, 2018, 10:37 a.m. |
| Summary | The Juniper Junos Pulse Secure Access Service (SSL VPN) devices with IVE OS 8.0 before 8.0r1, 7.4 before 7.4r5, and 7.1 before 7.1r18 allows remote attackers to conduct clickjacking attacks via unspecified vectors. |
|---|---|
| Publication Date | Sept. 29, 2014, 11:55 p.m. |
| Registration Date | Jan. 26, 2021, 3:11 p.m. |
| Last Update | Nov. 21, 2024, 11:08 a.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r5:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r12:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.4:r2.0:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.4:r4.0:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r4:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r8:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r13:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r6:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r3:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r2:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:8.0:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r7:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r15:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r1.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r14:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.4:r1.0:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r9:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r11:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.1r10:*:*:*:*:*:*:* | |||||
| cpe:2.3:a:juniper:junos_pulse_secure_access_service:7.4:r3.0:*:*:*:*:*:* | |||||