Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
Junos J-Web Clickjacking Vulnerability
Information
Severity
Severity
Medium
Family
Family
JunOS Local Security Checks
CVSSv2 Base
CVSSv2 Base
4.3
CVSSv2 Vector
CVSSv2 Vector
AV:N/AC:M/Au:N/C:N/I:P/A:N
Solution Type
Solution Type
Vendor Patch
Created
Created
8 years ago
Modified
Modified
5 years ago
Summary
Junos OS is prone to Clickjacking vulnerability on J-Web.
Insight
Insight
Junos J-Web was missing 'X-Frame-Options' HTTP header that may facilitate Clickjacking type of attacks against authenticated or unauthenticated pages on J-Web.
Affected Software
Affected Software
Junos OS 11.4, 12.1, 12.2, 12.3, 13.2, 13.3, 14.1
Detection Method
Detection Method
Checks if a vulnerable OS build is present on the target host.
Solution
Solution
New builds of Junos OS software are available from Juniper.