[Vulnerability Alert] Juniper Junos Space Has a High-Risk Security Vulnerability (CVE-2025-59978), Please Check and Patch Immediately

Date Posted: 2025/10/20

Subject: [Vulnerability Alert] Juniper Junos Space Has a High-Risk Security Vulnerability (CVE-2025-59978), Please Check and Patch Immediately

Content:
- Forwarded from National Information Security Sharing and Analysis Center NISAC-200-202510-00000030
- Researchers have discovered a Stored Cross-Site Scripting (XSS) vulnerability (CVE-2025-59978) in Juniper Junos Space. An authenticated remote attacker can exploit this vulnerability to inject malicious script into a webpage. When a user views the affected page, the malicious script will be executed in their browser, allowing the attacker to execute unauthorized commands with administrator privileges. Please check and patch immediately.
Affected Platforms:
- Junos Space versions prior to 24.1R4
Recommended Action:
- The official vendor has released a patch update for the vulnerability. Please refer to the official instructions for updating, the URL is as follows: https://supportportal.juniper.net/s/article/2025-10-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-24-1R4-release
References:
- https://supportportal.juniper.net/s/article/2025-10-Security-Bulletin-Junos-Space-Multiple-vulnerabilities-resolved-in-24-1R4-release

Computer and Communications Center
Network Systems Group