[Vulnerability Alert] Juniper Junos Space Has a High-Risk Security Vulnerability (CVE-2025-59978), Please Check and Patch Immediately

• Subject: [Vulnerability Alert] Juniper Junos Space Has a High-Risk Security Vulnerability (CVE-2025-59978), Please Check and Patch Immediately

• Content:
  • Forwarded from National Information Security Sharing and Analysis Center NISAC-200-202510-00000030
  • Researchers have discovered a Stored Cross-Site Scripting (XSS) vulnerability (CVE-2025-59978) in Juniper Junos Space. An authenticated remote attacker can exploit this vulnerability to inject malicious script into a webpage. When a user views the affected page, the malicious script will be executed in their browser, allowing the attacker to execute unauthorized commands with administrator privileges. Please check and patch immediately.
• Affected Platforms:
  • Junos Space versions prior to 24.1R4
• Recommended Action:
  • The official vendor has released a patch update for the vulnerability. Please refer to the official instructions for updating, the URL is as follows: https://supportportal.juniper.net/s/article/2025-10-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-24-1R4-release
• References:
  • https://supportportal.juniper.net/s/article/2025-10-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-24-1R4-release

Computer and Communications Center
Network Systems Group