Juniper Junos Space < 17.2R2 Persistent XSS Vulnerability (JSA10881)
Low Nessus Plugin ID 126917
SynopsisThe remote device is affected by a persistent cross-site scripting vulnerability.
DescriptionAccording to its self-reported version number, the version of Junos Space running on the remote device is < 17.2R2, and is therefore affected by a persistent cross-site scripting vulnerability in the UI framework used by Junos Space Security Director. A remote authenticated attacker can exploit that to inject persistent and malicious scripts, steal information or perform actions.
SolutionUpgrade to Junos Space version 17.2R2 or later.