|
249021
|
6.5 |
MEDIUM
Network
|
juniper
|
junos_space
|
An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to read arbitrary files on the device.
|
CWE-611
XXE
|
CVE-2017-2308
|
2024-11-21 12:23 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249022
|
6.1 |
MEDIUM
Network
|
juniper
|
junos_space
|
A reflected cross site scripting vulnerability in the administrative interface of Juniper Networks Junos Space versions prior to 16.1R1 may allow remote attackers to steal sensitive information or pe…
|
CWE-79
Cross-site Scripting
|
CVE-2017-2307
|
2024-11-21 12:23 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249023
|
8.8 |
HIGH
Network
|
juniper
|
junos_space
|
On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can execute code on the device.
|
CWE-863
Incorrect Authorization
|
CVE-2017-2306
|
2024-11-21 12:23 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249024
|
8.8 |
HIGH
Network
|
juniper
|
junos_space
|
On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can create privileged users, allow…
|
CWE-863
Incorrect Authorization
|
CVE-2017-2305
|
2024-11-21 12:23 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249025
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
Juniper Networks QFX3500, QFX3600, QFX5100, QFX5200, EX4300 and EX4600 devices running Junos OS 14.1X53 prior to 14.1X53-D40, 15.1X53 prior to 15.1X53-D40, 15.1 prior to 15.1R2, do not pad Ethernet p…
|
CWE-200
Information Exposure
|
CVE-2017-2304
|
2024-11-21 12:23 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249026
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
On Juniper Networks products or platforms running Junos OS 12.1X46 prior to 12.1X46-D50, 12.1X47 prior to 12.1X47-D40, 12.3 prior to 12.3R13, 12.3X48 prior to 12.3X48-D30, 13.2X51 prior to 13.2X51-D4…
|
NVD-CWE-noinfo
|
CVE-2017-2303
|
2024-11-21 12:23 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249027
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
On Juniper Networks products or platforms running Junos OS 12.1X46 prior to 12.1X46-D55, 12.1X47 prior to 12.1X47-D45, 12.3R13 prior to 12.3R13, 12.3X48 prior to 12.3X48-D35, 13.3 prior to 13.3R10, 1…
|
NVD-CWE-noinfo
|
CVE-2017-2302
|
2024-11-21 12:23 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249028
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
On Juniper Networks products or platforms running Junos OS 11.4 prior to 11.4R13-S3, 12.1X46 prior to 12.1X46-D60, 12.3 prior to 12.3R12-S2 or 12.3R13, 12.3X48 prior to 12.3X48-D40, 13.2X51 prior to …
|
NVD-CWE-noinfo
|
CVE-2017-2301
|
2024-11-21 12:23 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249029
|
7.5 |
HIGH
Network
|
juniper
|
junos
|
On Juniper Networks SRX Series Services Gateways chassis clusters running Junos OS 12.1X46 prior to 12.1X46-D65, 12.3X48 prior to 12.3X48-D40, 12.3X48 prior to 12.3X48-D60, flowd daemon on the primar…
|
NVD-CWE-noinfo
|
CVE-2017-2300
|
2024-11-21 12:23 |
2017-05-30 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
249030
|
7.8 |
HIGH
Local
|
ipa
|
empirical_project_monitor_-_extended
|
Untrusted search path vulnerability in Empirical Project Monitor - eXtended all versions allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory.
|
CWE-426
Untrusted Search Path
|
CVE-2017-2175
|
2024-11-21 12:23 |
2017-05-23 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
