CVE-2016-1261
Severity CVSS v4.0:
Pending analysis
Type:
CWE-352
Cross-Site Request Forgery (CSRF)
Publication date:
13/10/2017
Last modified:
20/04/2025
Description
J-Web does not validate certain input that may lead to cross-site request forgery (CSRF) issues or cause a denial of J-Web service (DoS).
Impact
Base Score 3.x
7.10
Severity 3.x
HIGH
Base Score 2.0
6.80
Severity 2.0
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:juniper:junos:12.1x44:-:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d10:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d15:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d20:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d25:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d30:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d35:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d40:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d45:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x44:d50:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x46:-:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:* | ||
| cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page