{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T23:59:38.766","vulnerabilities":[{"cve":{"id":"CVE-2014-3821","sourceIdentifier":"cve@mitre.org","published":"2014-07-11T20:55:02.670","lastModified":"2025-04-12T10:46:40.837","vulnStatus":"Deferred","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-site scripting (XSS) vulnerability in SRX Web Authentication (webauth) in Juniper Junos 11.4 before 11.4R11, 12.1X44 before 12.1X44-D34, 12.1X45 before 12.1X45-D25, 12.1X46 before 12.1X46-D20, and 12.1X47 before 12.1X47-D10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors."},{"lang":"es","value":"Vulnerabilidad de XSS en SRX Web Authentication (webauth) en Juniper Junos 11.4 anterior a 11.4R11, 12.1X44 anterior a 12.1X44-D34, 12.1X45 anterior a 12.1X45-D25, 12.1X46 anterior a 12.1X46-D20 y 12.1X47 anterior a 12.1X47-D10 permite a atacantes remotos inyectar secuencias de comandos web o HTML arbitrarios a través de vectores no especificados."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:N/I:P/A:N","baseScore":4.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"PARTIAL","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.6,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-79"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:11.4:*:*:*:*:*:*:*","matchCriteriaId":"41543223-0FA9-4CBE-8DEC-717CE5FFED79"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:12.1x44:*:*:*:*:*:*:*","matchCriteriaId":"1B307477-C5F2-4D98-AF4C-640D326164C7"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:12.1x45:*:*:*:*:*:*:*","matchCriteriaId":"8E747970-4C27-4B46-9163-964252CB98F6"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:*","matchCriteriaId":"CFB89F64-16BB-4A14-9084-B338668D7FF1"},{"vulnerable":true,"criteria":"cpe:2.3:o:juniper:junos:12.1x47:*:*:*:*:*:*:*","matchCriteriaId":"0BB3DE56-1B04-4A53-B4A4-93286FC98463"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/68548","source":"cve@mitre.org"},{"url":"http://www.securitytracker.com/id/1030563","source":"cve@mitre.org"},{"url":"https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10640","source":"cve@mitre.org","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/68548","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.securitytracker.com/id/1030563","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"https://kb.juniper.net/InfoCenter/index?page=content&id=JSA10640","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}