Unrated severityNVD Advisory· Published Aug 1, 2013· Updated Jun 16, 2026
CVE-2012-5460
CVE-2012-5460
Description
Cross-site scripting (XSS) vulnerability in the help page in Juniper Secure Access (SA) with IVE OS before 7.1r13, 7.2.x before 7.2r7, and 7.3.x before 7.3r2 allows remote attackers to inject arbitrary web script or HTML via the WWHSearchWordsText parameter.
Affected products
20- cpe:2.3:a:juniper:secure_access_virtual_appliance:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:fips_secure_access_4000:-:*:*:*:*:*:*:*+ 9 more
- cpe:2.3:h:juniper:fips_secure_access_4000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:fips_secure_access_4500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:fips_secure_access_6000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_2000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_2500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_4000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_4500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_6000:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_700:-:*:*:*:*:*:*:*
- (no CPE)range: <7.1r13, <7.2r7, <7.3r2
cpe:2.3:h:juniper:fips_secure_access_6500:-:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:juniper:fips_secure_access_6500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:secure_access_6500:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:mag2600_gateway:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:mag4610_gateway:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:mag6610_gateway:-:*:*:*:*:*:*:*
- cpe:2.3:h:juniper:mag6611_gateway:-:*:*:*:*:*:*:*
cpe:2.3:o:juniper:ive_os:7.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:o:juniper:ive_os:7.1:*:*:*:*:*:*:*
- cpe:2.3:o:juniper:ive_os:7.2:*:*:*:*:*:*:*
- cpe:2.3:o:juniper:ive_os:7.3:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.