{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-21T01:08:02.117","vulnerabilities":[{"cve":{"id":"CVE-2014-2712","sourceIdentifier":"cve@mitre.org","published":"2014-04-14T15:09:06.367","lastModified":"2025-04-12T10:46:40.837","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in J-Web in Juniper Junos before 10.0S25, 10.4 before 10.4R10, 11.4 before 11.4R11, 12.1 before 12.1R9, 12.1X44 before 12.1X44-D30, 12.1X45 before 12.1X45-D20, 12.1X46 before 12.1X46-D10, and 12.2 before 12.2R1 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters to index.php."},{"lang":"es","value":"Vulnerabilidad de XSS en J-Web en Juniper Junos en versiones anteriores a 10.0S25, 10.4 en versiones anteriores a 10.4R10, 11.4 en versiones anteriores a 11.4R11, 12.1 en versiones anteriores a 12.1R9, 12.1X44 en versiones anteriores a 12.1X44-D30, 12.1X45 en versiones anteriores a 12.1X45-D20, 12.1X46 en versiones anteriores a 12.1X46-D10 y 12.2 en versiones anteriores a 12.2R1 permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de parámetros no especificados en index.php."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:10.0:*:*:*:*:*:*:*","matchCriteriaId":"D8FFDD73-F4A7-42BC-8CEF-4E7CC469CF28"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:10.4:*:*:*:*:*:*:*","matchCriteriaId":"45C2DA1E-12A7-4018-92CE-7621FC278025"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:11.4:*:*:*:*:*:*:*","matchCriteriaId":"41543223-0FA9-4CBE-8DEC-717CE5FFED79"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:12.1:*:*:*:*:*:*:*","matchCriteriaId":"B40B8FD6-A597-4845-8E8E-63EFDF606006"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:12.1x44:*:*:*:*:*:*:*","matchCriteriaId":"1B307477-C5F2-4D98-AF4C-640D326164C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:12.1x45:*:*:*:*:*:*:*","matchCriteriaId":"8E747970-4C27-4B46-9163-964252CB98F6"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*","matchCriteriaId":"CFB89F64-16BB-4A14-9084-B338668D7FF1"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:12.2:*:*:*:*:*:*:*","matchCriteriaId":"5FB9541A-2570-459A-87D6-5341C67B8EC8"}]}]}],"references":[{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10521","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/66767","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1030058","source":"cve@mitre.org"},{"url":"http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10521","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/66767","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1030058","source":"af854a3a-2127-422b-91ae-364da2661108"}]}}]}