CVE-2014-2291 in Junos Pulse Secure Access Serviceinformation

Résumé

par MITRE

Cross-site scripting (XSS) vulnerability in the Pulse Collaboration (Secure Meeting) user pages in Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS before 7.1r18, 7.3 before 7.3r10, 7.4 before 7.4r8, and 8.0 before 8.0r1 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Réserver

05/03/2014

Divulgation

14/03/2014

Modérer

accepté

Entrée

VDB-12607

CPE

prêt

EPSS

0.00936

KEV

non

Activités

très faible

Sources

Do you want to use VulDB in your project?

Use the official API to access entries easily!