Unrated severityNVD Advisory· Published Aug 1, 2013· Updated Apr 29, 2026
CVE-2012-5460
CVE-2012-5460
Description
Cross-site scripting (XSS) vulnerability in the help page in Juniper Secure Access (SA) with IVE OS before 7.1r13, 7.2.x before 7.2r7, and 7.3.x before 7.3r2 allows remote attackers to inject arbitrary web script or HTML via the WWHSearchWordsText parameter.
Affected products
19cpe:2.3:o:juniper:ive_os:7.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:juniper:ive_os:7.1:*:*:*:*:*:*:*
- cpe:2.3:o:juniper:ive_os:7.2:*:*:*:*:*:*:*
- cpe:2.3:o:juniper:ive_os:7.3:*:*:*:*:*:*:*
- cpe:2.3:a:juniper:secure_access_virtual_appliance:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:fips_secure_access_4000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:fips_secure_access_4500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:fips_secure_access_6000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:fips_secure_access_6500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:mag2600_gateway:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:mag4610_gateway:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:mag6610_gateway:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:mag6611_gateway:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_2000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_2500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_4000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_4500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_6000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_6500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_700:-:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2News mentions
0No linked articles in our index yet.