High

DATE	CVE	VULNERABILITY TITLE	RISK
2018-01-10	CVE-2018-0012	Unspecified vulnerability in Juniper Junos Space 15.1/15.2/17.2 Junos Space is affected by a privilege escalation vulnerability that may allow a local authenticated attacker to gain root privileges. local low complexity juniper	7.2
2017-10-13	CVE-2016-1265	Cross-Site Request Forgery (CSRF) vulnerability in Juniper Junos Space A remote unauthenticated network based attacker with access to Junos Space may execute arbitrary code on Junos Space or gain access to devices managed by Junos Space using cross site request forgery (CSRF), default authentication credentials, information leak and command injection attack vectors. network low complexity juniper CWE-352	7.5
2017-03-20	CVE-2016-4926	Improper Authentication vulnerability in Juniper Junos Space 15.1/15.2 Insufficient authentication vulnerability in Junos Space before 15.2R2 allows remote network based users with access to Junos Space web interface to perform certain administrative tasks without authentication. network low complexity juniper CWE-287	7.5
2014-10-15	CVE-2014-6500	Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier, and 5.6.20 and earlier, allows remote attackers to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-6491. network low complexity oracle juniper mariadb	7.5
2014-10-15	CVE-2014-6491	Unspecified vulnerability in Oracle MySQL Server 5.5.39 and earlier and 5.6.20 and earlier allows remote attackers to affect confidentiality, integrity, and availability via vectors related to SERVER:SSL:yaSSL, a different vulnerability than CVE-2014-6500. network low complexity oracle juniper mariadb	7.5