CVE-2025-59977

medium

Description

An Improper Handling of Parameters vulnerability in the web interface of Juniper Networks Junos Space permits the name of an arbitrarily supplied URL parameter to be copied into a response within the query string of a URL, allowing an attacker to craft a URL executed by the user to obtain unspecified information about the system or deliver unexpected results to the affected user.

Details

Source: Mitre, NVD

Published: 2025-10-08

Risk Information

CVSS v2

Base Score: 6.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N

Severity: Medium

CVSS v3

Base Score: 5.4

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N

Severity: Medium

CVSS v4

Base Score: 5.3

Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N

Severity: Medium