Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
symantecSymantec Security ResponseSMNTC-110402
HistoryOct 09, 2019 - 12:00 a.m.

Juniper Junos J-Web CVE-2019-0047 HTML Injection Vulnerability

2019-10-0900:00:00
Symantec Security Response
www.symantec.com
11

0.005 Low

EPSS

Percentile

76.2%

JSON

Description

Juniper Junos is prone to an HTML-injection vulnerability. Successful exploits will allow attacker-supplied HTML and script code to run in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials or control how the site is rendered to the user. Other attacks are also possible.

Technologies Affected

  • Juniper JUNOS 12.1X46 -D10
  • Juniper JUNOS 12.1X46 D15
  • Juniper JUNOS 12.1X46 D20
  • Juniper JUNOS 12.1X46-D25
  • Juniper JUNOS 12.3
  • Juniper JUNOS 12.3 R2
  • Juniper JUNOS 12.3 R4
  • Juniper JUNOS 12.3 R6
  • Juniper Junos 12.1X46
  • Juniper Junos 12.1X46 D10
  • Juniper Junos 12.1X46 D25
  • Juniper Junos 12.1X46-D10
  • Juniper Junos 12.1X46-D15
  • Juniper Junos 12.1X46-D20
  • Juniper Junos 12.1X46-D20.5
  • Juniper Junos 12.1X46-D26
  • Juniper Junos 12.1X46-D30
  • Juniper Junos 12.1X46-D35
  • Juniper Junos 12.1X46-D36
  • Juniper Junos 12.1X46-D37
  • Juniper Junos 12.1X46-D40
  • Juniper Junos 12.1X46-D45
  • Juniper Junos 12.1X46-D46
  • Juniper Junos 12.1X46-D50
  • Juniper Junos 12.1X46-D51
  • Juniper Junos 12.1X46-D55
  • Juniper Junos 12.1X46-D60
  • Juniper Junos 12.1X46-D65
  • Juniper Junos 12.1X46-D66
  • Juniper Junos 12.1X46-D67
  • Juniper Junos 12.1X46-D71
  • Juniper Junos 12.1X46-D72
  • Juniper Junos 12.1X46-D76
  • Juniper Junos 12.1X46-D77
  • Juniper Junos 12.1X46-D81
  • Juniper Junos 12.1X46-D82
  • Juniper Junos 12.3 R1
  • Juniper Junos 12.3 R3
  • Juniper Junos 12.3 R5
  • Juniper Junos 12.3 R7
  • Juniper Junos 12.3 R8
  • Juniper Junos 12.3R1.8
  • Juniper Junos 12.3R10
  • Juniper Junos 12.3R10.2
  • Juniper Junos 12.3R11
  • Juniper Junos 12.3R12
  • Juniper Junos 12.3R12-S10
  • Juniper Junos 12.3R12-S11
  • Juniper Junos 12.3R12-S12
  • Juniper Junos 12.3R12-S2
  • Juniper Junos 12.3R12-S4
  • Juniper Junos 12.3R12-S5
  • Juniper Junos 12.3R12-S7
  • Juniper Junos 12.3R12.4
  • Juniper Junos 12.3X48
  • Juniper Junos 12.3X48-D10
  • Juniper Junos 12.3X48-D15
  • Juniper Junos 12.3X48-D20
  • Juniper Junos 12.3X48-D25
  • Juniper Junos 12.3X48-D30
  • Juniper Junos 12.3X48-D30.7
  • Juniper Junos 12.3X48-D35
  • Juniper Junos 12.3X48-D40
  • Juniper Junos 12.3X48-D45
  • Juniper Junos 12.3X48-D50
  • Juniper Junos 12.3X48-D51
  • Juniper Junos 12.3X48-D55
  • Juniper Junos 12.3X48-D60
  • Juniper Junos 12.3X48-D61
  • Juniper Junos 12.3X48-D65
  • Juniper Junos 12.3X48-D66
  • Juniper Junos 12.3X48-D70
  • Juniper Junos 12.3X48-D75
  • Juniper Junos 12.3X48-D76
  • Juniper Junos 12.3X48-D77
  • Juniper Junos 14.1X53
  • Juniper Junos 14.1X53-D10
  • Juniper Junos 14.1X53-D12
  • Juniper Junos 14.1X53-D16
  • Juniper Junos 14.1X53-D18
  • Juniper Junos 14.1X53-D20
  • Juniper Junos 14.1X53-D25
  • Juniper Junos 14.1X53-D26
  • Juniper Junos 14.1X53-D28
  • Juniper Junos 14.1X53-D30
  • Juniper Junos 14.1X53-D30.3
  • Juniper Junos 14.1X53-D34
  • Juniper Junos 14.1X53-D35
  • Juniper Junos 14.1X53-D40
  • Juniper Junos 14.1X53-D42
  • Juniper Junos 14.1X53-D44
  • Juniper Junos 14.1X53-D45
  • Juniper Junos 14.1X53-D47
  • Juniper Junos 14.1X53-D48
  • Juniper Junos 14.1X53-D49
  • Juniper Junos 14.1X53-D50
  • Juniper Junos 15.1
  • Juniper Junos 15.1A2
  • Juniper Junos 15.1F1
  • Juniper Junos 15.1F2
  • Juniper Junos 15.1F2-S14
  • Juniper Junos 15.1F2-S16
  • Juniper Junos 15.1F2-S18
  • Juniper Junos 15.1F2-S19
  • Juniper Junos 15.1F2-S2
  • Juniper Junos 15.1F2-S5
  • Juniper Junos 15.1F3
  • Juniper Junos 15.1F4
  • Juniper Junos 15.1F4-S2
  • Juniper Junos 15.1F5
  • Juniper Junos 15.1F5-S2
  • Juniper Junos 15.1F5-S3
  • Juniper Junos 15.1F5-S5
  • Juniper Junos 15.1F5-S7
  • Juniper Junos 15.1F5-S8
  • Juniper Junos 15.1F6
  • Juniper Junos 15.1F6-S10
  • Juniper Junos 15.1F6-S12
  • Juniper Junos 15.1F6-S4
  • Juniper Junos 15.1F6-S5
  • Juniper Junos 15.1F6-S7
  • Juniper Junos 15.1F6-S8
  • Juniper Junos 15.1F6-S9
  • Juniper Junos 15.1X49
  • Juniper Junos 15.1X49-D10
  • Juniper Junos 15.1X49-D100
  • Juniper Junos 15.1X49-D101
  • Juniper Junos 15.1X49-D110
  • Juniper Junos 15.1X49-D120
  • Juniper Junos 15.1X49-D130
  • Juniper Junos 15.1X49-D131
  • Juniper Junos 15.1X49-D140
  • Juniper Junos 15.1X49-D15
  • Juniper Junos 15.1X49-D150
  • Juniper Junos 15.1X49-D160
  • Juniper Junos 15.1X49-D170
  • Juniper Junos 15.1X49-D20
  • Juniper Junos 15.1X49-D30
  • Juniper Junos 15.1X49-D35
  • Juniper Junos 15.1X49-D40
  • Juniper Junos 15.1X49-D60
  • Juniper Junos 15.1X49-D70
  • Juniper Junos 15.1X49-D80
  • Juniper Junos 15.1X49-D90
  • Juniper Junos 15.1X53
  • Juniper Junos 15.1X53-D20
  • Juniper Junos 15.1X53-D30
  • Juniper Junos 15.1X53-D31
  • Juniper Junos 15.1X53-D33
  • Juniper Junos 15.1X53-D35
  • Juniper Junos 15.1X53-D40
  • Juniper Junos 15.1X53-D47
  • Juniper Junos 15.1X53-D48
  • Juniper Junos 15.1X53-D49
  • Juniper Junos 15.1X53-D50
  • Juniper Junos 15.1X53-D55
  • Juniper Junos 15.1X53-D57
  • Juniper Junos 15.1X53-D58
  • Juniper Junos 15.1X53-D59
  • Juniper Junos 15.1X53-D60
  • Juniper Junos 15.1X53-D62
  • Juniper Junos 15.1X53-D63
  • Juniper Junos 15.1X53-D64
  • Juniper Junos 15.1X53-D65
  • Juniper Junos 15.1X53-D66
  • Juniper Junos 15.1X53-D67
  • Juniper Junos 15.1X53-D68
  • Juniper Junos 16.1
  • Juniper Junos 16.1R1
  • Juniper Junos 16.1R2
  • Juniper Junos 16.1R3
  • Juniper Junos 16.1R3-S10
  • Juniper Junos 16.1R3-S3
  • Juniper Junos 16.1R3-S4
  • Juniper Junos 16.1R3-S6
  • Juniper Junos 16.1R3-S8
  • Juniper Junos 16.1R3-S9
  • Juniper Junos 16.1R4-S1
  • Juniper Junos 16.1R4-S11
  • Juniper Junos 16.1R4-S12
  • Juniper Junos 16.1R4-S3
  • Juniper Junos 16.1R4-S4
  • Juniper Junos 16.1R4-S6
  • Juniper Junos 16.1R4-S8
  • Juniper Junos 16.1R4-S9
  • Juniper Junos 16.1R5
  • Juniper Junos 16.1R5-S1
  • Juniper Junos 16.1R5-S3
  • Juniper Junos 16.1R6
  • Juniper Junos 16.1R6-S3
  • Juniper Junos 16.1R6-S6
  • Juniper Junos 16.1R7
  • Juniper Junos 16.1R7-S1
  • Juniper Junos 16.1R7-S2
  • Juniper Junos 16.1R7-S3
  • Juniper Junos 16.1R7-S4
  • Juniper Junos 16.2
  • Juniper Junos 16.2R1
  • Juniper Junos 16.2R1-S3
  • Juniper Junos 16.2R1-S6
  • Juniper Junos 16.2R2
  • Juniper Junos 16.2R2-S2
  • Juniper Junos 16.2R2-S5
  • Juniper Junos 16.2R2-S6
  • Juniper Junos 16.2R2-S7
  • Juniper Junos 16.2R2-S8
  • Juniper Junos 17.1
  • Juniper Junos 17.1R1
  • Juniper Junos 17.1R1-S3
  • Juniper Junos 17.1R1-S7
  • Juniper Junos 17.1R2
  • Juniper Junos 17.1R2-S10
  • Juniper Junos 17.1R2-S2
  • Juniper Junos 17.1R2-S3
  • Juniper Junos 17.1R2-S4
  • Juniper Junos 17.1R2-S5
  • Juniper Junos 17.1R2-S6
  • Juniper Junos 17.1R2-S7
  • Juniper Junos 17.1R2-S9
  • Juniper Junos 17.2
  • Juniper Junos 17.2R
  • Juniper Junos 17.2R1
  • Juniper Junos 17.2R1-S1
  • Juniper Junos 17.2R1-S3
  • Juniper Junos 17.2R1-S5
  • Juniper Junos 17.2R1-S7
  • Juniper Junos 17.3
  • Juniper Junos 17.3R
  • Juniper Junos 17.3R1
  • Juniper Junos 17.3R2
  • Juniper Junos 17.3R2-S1
  • Juniper Junos 17.3R2-S2
  • Juniper Junos 17.3R2-S4
  • Juniper Junos 17.3R3
  • Juniper Junos 17.3R3-S1
  • Juniper Junos 17.3R3-S2
  • Juniper Junos 17.3R3-S3
  • Juniper Junos 17.3R3-S4
  • Juniper Junos 17.4
  • Juniper Junos 17.4R1
  • Juniper Junos 17.4R1-S1
  • Juniper Junos 17.4R1-S4
  • Juniper Junos 17.4R1-S5
  • Juniper Junos 17.4R1-S6
  • Juniper Junos 18.1
  • Juniper Junos 18.1R1
  • Juniper Junos 18.1R2
  • Juniper Junos 18.1R2-S1
  • Juniper Junos 18.1R2-S2
  • Juniper Junos 18.1R2-S3
  • Juniper Junos 18.1R2-S4
  • Juniper Junos 18.1R3
  • Juniper Junos 18.1R3-S1
  • Juniper Junos 18.1R3-S2
  • Juniper Junos 18.1R3-S3
  • Juniper Junos 18.1R3-S4
  • Juniper Junos 18.2
  • Juniper Junos 18.2R1
  • Juniper Junos 18.2R1-S2
  • Juniper Junos 18.2R1-S3
  • Juniper Junos 18.2R1-S4
  • Juniper Junos 18.3
  • Juniper Junos 18.3R1
  • Juniper Junos 18.3R1-S1
  • Juniper Junos 18.3R1-S2
  • Juniper Junos 18.4
  • Juniper Junos 18.4R1
  • Juniper Junos 18.4R1-S1

Recommendations

Configure webservers to serve only specific, defined file types.
Filter access to the affected computer at the network boundary if global access isn’t needed. Restricting access to only trusted computers and networks might greatly reduce the likelihood of a successful exploit.

Deploy network intrusion detection systems to monitor network traffic for malicious activity.
Deploy NIDS to detect and block attacks and anomalous activity such as requests containing suspicious URI sequences. Since the webserver may log such requests, review logs regularly.

Set web browser security to disable the execution of JavaScript.
Since a successful exploit of this issue allows malicious script code to execute in web clients, consider disabling support for script code and active content within a client browser. Note that this mitigation tactic might adversely affect legitimate websites that rely on the execution of browser-based script code.

Updates are available. Please see the references or vendor advisory for more information.

Related

cvelist 1
prion 1
cve 1
nvd 1
nessus 1
cvelist
cvelist
CVE-2019-0047 Junos OS: Persistent XSS vulnerability in J-Web
2019-10-09 00:00:00
prion
prion
Cross site scripting
2019-10-09 20:15:00
cve
cve
CVE-2019-0047
2019-10-09 20:15:16
nvd
nvd
CVE-2019-0047
2019-10-09 20:15:16
nessus
nessus
Juniper JSA10970
2020-01-29 00:00:00

0.005 Low

EPSS

Percentile

76.2%

JSON
Related for SMNTC-110402
cvelist1prion1cve1nvd1nessus1