| |
Vulnerability CVE-2014-3823
Published: 2014-09-29
Description: |
The Juniper Junos Pulse Secure Access Service (SSL VPN) devices with IVE OS 8.0 before 8.0r1, 7.4 before 7.4r5, and 7.1 before 7.1r18 allows remote attackers to conduct clickjacking attacks via unspecified vectors. |
Type:
CWE-20 (Improper Input Validation)
CVSS2 => (AV:N/AC:M/Au:N/C:N/I:P/A:N)
CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
4.3/10 |
2.9/10 |
8.6/10 |
Exploit range |
Attack complexity |
Authentication |
Remote |
Medium |
No required |
Confidentiality impact |
Integrity impact |
Availability impact |
None |
Partial |
None |
References: |
https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10647
|
|
|
closedb();
?>
Copyright 2024, cxsecurity.com
|
|
|