Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Junos Space — Vulnerabilities & Security Advisories 49

All 49 CVE vulnerabilities found in Junos Space, with AI-generated Chinese analysis, references, and POCs.

This page documents vulnerabilities associated with the Junos Space product, categorized under Common Weakness Enumeration identifiers and relevant security tags. It aggregates a comprehensive collection of security flaws affecting Juniper Networks’ network management software, covering disclosed issues from 2011 through the present day. This scope includes various severity levels and attack vectors that have impacted the platform’s integrity and availability over more than a decade. Here, users can track vendor advisories issued by Juniper Networks to stay informed about patch releases and remediation steps. You can also gain a deeper understanding of specific weakness classes such as buffer overflows, injection flaws, or authentication bypasses within the context of this software. Additionally, the page allows you to look up a product’s vulnerability history to analyze trends in security posture and identify recurring patterns in the codebase. This resource serves as a centralized reference for security professionals, system administrators, and auditors who need to assess the risk profile of their Junos Space deployments. By reviewing these details, stakeholders can make informed decisions regarding software updates, configuration hardening, and long-term maintenance strategies. The information presented is strictly factual and derived from official vendor disclosures and recognized security databases, ensuring accuracy and reliability for technical analysis and compliance reporting purposes.

Vendor: Juniper Networks

CVE IDTitleCVSSSeverityPublished
CVE-2026-21904 Junos Space: ilpFilter field on nLegacy.jsp is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2026-04-09
CVE-2026-21907 Junos Space: TLS/SSL server supports use of static key ciphers (ssl-static-key-ciphers) CWE-327 5.9 Medium2026-01-15
CVE-2025-60009 Junos Space: CLI Configlet page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-60002 Junos Space: Template Definitions page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-60001 Junos Space: Create Quick Template page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-60000 Junos Space: Generate Report page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59999 Junos Space: API Access Profiles page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59998 Junos Space: Archive Logs screen is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59997 Junos Space: Fields in the CLI Configlets are vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59996 Junos Space: Configuration View page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59995 Junos Space: Template creation through Definition is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59994 Junos Space: Quick Template page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59993 Junos Space: Space Node Setting fields are vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59992 Junos Space: Secure Console page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59991 Junos Space: Device Management pages are vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59990 Junos Space: Template creation pages are vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59989 Junos Space: Device Discovery page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59988 Junos Space: Generate Report page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59987 Junos Space: The arbitrary device search field is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59986 Junos Space: Input fields in Model Devices are vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59985 Junos Space: Purging Policy field is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59984 Junos Space: Global Search is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59983 Junos Space: Template Definition page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59982 Junos Space: Dashboard Search field is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59981 Junos Space: Device Template Definition page is vulnerable to reflected cross-site script injection CWE-79 6.1 Medium2025-10-09
CVE-2025-59978 Junos Space: Stored cross-site scripting vulnerability in web application CWE-79 9.0 Critical2025-10-09
CVE-2025-59976 Junos Space: Arbitrary file download vulnerability in web interface CWE-552 6.5 Medium2025-10-09
CVE-2025-59975 Junos Space: Flooding device with inbound API calls leads to WebUI and CLI management access DoS CWE-400 7.5 High2025-10-09
CVE-2024-39563 Junos Space: Remote Command Execution (RCE) vulnerability in web application CWE-77 7.3 High2024-10-11
CVE-2021-0220 Junos Space: Shared secrets stored in recoverable format and directly exposed through the UI CWE-257 6.8 Medium2021-01-15

All 49 known CVE vulnerabilities affecting Junos Space with full Chinese analysis, references, and POCs where available.