VYPR
Unrated severityNVD Advisory· Published Apr 14, 2014· Updated Jun 17, 2026

CVE-2014-2711

CVE-2014-2711

Description

Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 11.4R11, 11.4X27 before 11.4X27.62 (BBE), 12.1 before 12.1R9, 12.1X44 before 12.1X44-D35, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, 12.2 before 12.2R7, 12.3 before 12.3R6, 13.1 before 13.1R4, 13.2 before 13.2R3, and 13.3 before 13.3R1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected products

12
  • cpe:2.3:o:juniper:junos:11.4:*:*:*:*:*:*:*+ 11 more
    • cpe:2.3:o:juniper:junos:11.4:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:11.4x27:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:12.1:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:12.1x44:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:12.1x45:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:12.2:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:12.3:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:13.1:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:13.2:*:*:*:*:*:*:*
    • cpe:2.3:o:juniper:junos:13.3:*:*:*:*:*:*:*
    • (no CPE)range: before 11.4R11, 12.1R9, 12.2R7, 12.3R6, 13.1R4, 13.2R3, 13.3R1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.