{“lastseen”:””,”description”:”An Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Juniper Networks Junos Space\u00a0allows an attacker to inject script tags in the dashboard search field that, when visited by another user, enables the attacker to execute commands with the target’s permissions, including an administrator.This issue affects all versions of Junos Space before 24.1R4.”,”published”:”2025-10-09T16:06:53.621Z”,”modified”:”2025-10-09T19:48:49.446Z”,”type”:”cve”,”title”:”Junos Space: Dashboard Search field is vulnerable to reflected cross-site script injection”,”source”:”juniper”,”references”:”https:\/\/supportportal.juniper.net\/JSA103140″,”id”:”CVE-2025-59982″,”bulletinFamily”:””,”cwe”:[“CWE-79″],”cvelist”:null,”sourceData”:”Juniper Networks Junos Space 0″,”sourceHref”:””,”cvss”:{“score”:6.1,”severity”:”MEDIUM”,”vector”:”CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:R\/S:C\/C:L\/I:L\/A:N”,”version”:”3.1″},”cvss2″:{},”cvss3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””,”cvssV3″:{“version”:””,”vectorString”:””,”baseScore”:0,”baseSeverity”:””,”attackVector”:””,”attackComplexity”:””,”privilegesRequired”:””,”userInteraction”:””,”scope”:””,”confidentialityImpact”:””,”integrityImpact”:””,”availabilityImpact”:””}},”href”:””,”category_name”:”CVE”,”post_link”:””,”product”:”Junos Space”,”version”:”0″,”vendor”:”Juniper Networks”,”ai_description”:””,”ai_severity”:””,”ai_vendor”:””,”ai_product”:””,”ai_version”:””,”ai_score”:0}<\/p>\n","protected":false},"excerpt":{"rendered":"
{“lastseen”:””,”description”:”An Improper Neutralization of Input During Web Page Generation (‘Cross-site Scripting’) vulnerability in Juniper Networks Junos Space\u00a0allows an attacker to inject script tags in the…<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[6,8,31,12,21,13,7,11,5],"class_list":["post-20925","post","type-post","status-publish","format-standard","hentry","category-category_cve","tag-cve","tag-cvss","tag-cvss-61","tag-exploit","tag-medium","tag-news","tag-security","tag-tapic","tag-vulnerability"],"yoast_head":"\n