CVE-2008-6096

CWE-79Cross-site Scripting (XSS)4 documents4 sources
Severity
4.3MEDIUM
EPSS
0.3%
top 48.02%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Juniper Netscreen Screenos
Timeline
PublishedFeb 9
Latest updateMay 17

Description

Cross-site scripting (XSS) vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web script or HTML via the user name parameter to the (1) web interface login page or the (2) telnet login page.

CVSS vector

AV:N/AC:M/C:N/I:P/A:NExploitability: 8.6 | Impact: 2.9

Affected Packages1 packages

NVDjuniper/netscreen_screenos5.4.0r9.0+138

🔴Vulnerability Details

2
GHSA
GHSA-g25c-vj5x-qjvw: Cross-site scripting (XSS) vulnerability in Juniper NetScreen ScreenOS before 52022-05-17
CVEList
CVE-2008-6096: Cross-site scripting (XSS) vulnerability in Juniper NetScreen ScreenOS before 52009-02-09

📋Vendor Advisories

1
Juniper
CVE-2008-6096: Cross-site scripting (XSS) vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web2009-02-09
CVE-2008-6096 (MEDIUM CVSS 4.3) | Cross-site scripting (XSS) vulnerab | cvebase.io