Juniper Junos Pulse Secure Access Service vulnerabilities
5 known vulnerabilities affecting juniper/junos_pulse_secure_access_service.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM5
Vulnerabilities
Page 1 of 1
CVE-2014-3820MEDIUMCVSS 4.3v7.1v7.1r1+17 more2014-09-29
CVE-2014-3820 [MEDIUM] CWE-79 CVE-2014-3820: Cross-site scripting (XSS) vulnerability in the SSL VPN/UAC web server in the Juniper Junos Pulse Se
Cross-site scripting (XSS) vulnerability in the SSL VPN/UAC web server in the Juniper Junos Pulse Secure Access Service (SSL VPN) devices with IVE OS 7.1 before 7.1r16, 7.4 before 7.4r3, and 8.0 before 8.0r1 and the Juniper Junos Pulse Access Control Service devices with UAC OS 4.1 before 4.1r8, 4.4 before 4.4r3 and 5.0 before 5.0r1 allows remote admin
nvd
CVE-2014-3824MEDIUMCVSS 4.3v7.1v7.1r1+17 more2014-09-29
CVE-2014-3824 [MEDIUM] CWE-79 CVE-2014-3824: Cross-site scripting (XSS) vulnerability in the web server in the Juniper Junos Pulse Secure Access
Cross-site scripting (XSS) vulnerability in the web server in the Juniper Junos Pulse Secure Access Service (SSL VPN) devices with IVE OS 8.0 before 8.0r6, 7.4 before 7.4r13, and 7.1 before 7.1r20 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
nvd
CVE-2014-3823MEDIUMCVSS 4.3v7.1v7.1r1.1+16 more2014-09-29
CVE-2014-3823 [MEDIUM] CWE-20 CVE-2014-3823: The Juniper Junos Pulse Secure Access Service (SSL VPN) devices with IVE OS 8.0 before 8.0r1, 7.4 be
The Juniper Junos Pulse Secure Access Service (SSL VPN) devices with IVE OS 8.0 before 8.0r1, 7.4 before 7.4r5, and 7.1 before 7.1r18 allows remote attackers to conduct clickjacking attacks via unspecified vectors.
nvd
CVE-2013-5650MEDIUMCVSS 5.4v7.1v7.2+2 more2013-09-16
CVE-2013-5650 [MEDIUM] CWE-20 CVE-2013-5650: Junos Pulse Secure Access Service (IVE) 7.1 before 7.1r5, 7.2 before 7.2r10, 7.3 before 7.3r6, and 7
Junos Pulse Secure Access Service (IVE) 7.1 before 7.1r5, 7.2 before 7.2r10, 7.3 before 7.3r6, and 7.4 before 7.4r3 and Junos Pulse Access Control Service (UAC) 4.1 before 4.1r8.1, 4.2 before 4.2r5, 4.3 before 4.3r6 and 4.4 before 4.4r3, when a hardware SSL acceleration card is enabled, allows remote attackers to cause a denial of service (device hang)
nvd
CVE-2013-3970MEDIUMCVSS 4.3v7.0r2v7.0r3+12 more2013-06-13
CVE-2013-3970 [MEDIUM] CWE-310 CVE-2013-3970: Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS 7.0r2 through 7.0r8 and 7.1r1 th
Juniper Junos Pulse Secure Access Service (aka SSL VPN) with IVE OS 7.0r2 through 7.0r8 and 7.1r1 through 7.1r5 and Junos Pulse Access Control Service (aka UAC) with UAC OS 4.1r1 through 4.1r5 include a test Certification Authority (CA) certificate in the Trusted Server CAs list, which makes it easier for man-in-the-middle attackers to spoof SSL serve
nvd