Cross-site scripting (XSS) vulnerability in the Dynamic VPN in Juniper Junos 12.1X44 before 12.1X44-D45, 12.1X46 before 12.1X46-D30, 12.1X47 before 12.1X47-D20, and 12.3X48 before 12.3X48-D10 on SRX series devices allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
2015-04-10T15:00:09.477
2025-04-12T10:46:40.837
Deferred
CVSSv2: 4.3 (MEDIUM)
AV:N/AC:M/Au:N/C:N/I:P/A:N
8.6
2.9
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | juniper | junos | 12.1x44 | Yes |
| Operating System | juniper | junos | 12.1x44 | Yes |
| Operating System | juniper | junos | 12.1x44 | Yes |
| Operating System | juniper | junos | 12.1x44 | Yes |
| Operating System | juniper | junos | 12.1x44 | Yes |
| Operating System | juniper | junos | 12.1x44 | Yes |
| Operating System | juniper | junos | 12.1x44 | Yes |
| Operating System | juniper | junos | 12.1x44 | Yes |
| Operating System | juniper | junos | 12.1x46 | Yes |
| Operating System | juniper | junos | 12.1x46 | Yes |
| Operating System | juniper | junos | 12.1x46 | Yes |
| Operating System | juniper | junos | 12.1x46 | Yes |
| Operating System | juniper | junos | 12.1x46 | Yes |
| Operating System | juniper | junos | 12.1x47 | Yes |
| Operating System | juniper | junos | 12.1x47 | Yes |
| Operating System | juniper | junos | 12.1x48 | Yes |
| Hardware | juniper | srx100 | - | No |
| Hardware | juniper | srx110 | - | No |
| Hardware | juniper | srx1400 | - | No |
| Hardware | juniper | srx210 | - | No |
| Hardware | juniper | srx220 | - | No |
| Hardware | juniper | srx240 | - | No |
| Hardware | juniper | srx3400 | - | No |
| Hardware | juniper | srx3600 | - | No |
| Hardware | juniper | srx550 | - | No |
| Hardware | juniper | srx5600 | - | No |
| Hardware | juniper | srx5800 | - | No |
| Hardware | juniper | srx650 | - | No |