Juniper Networks Patches Critical Junos Space Vulnerabilities - SecurityWeek

Juniper Networks has released comprehensive security patches addressing nearly 220 vulnerabilities across its Junos OS, Junos Space, and Security Director platforms as part of its quarterly security advisory schedule.

The company resolved over 200 security defects, with Junos Space receiving the most significant updates including fixes for 24 cross-site scripting vulnerabilities and 162 unique CVEs. Nine critical-severity flaws were patched in Junos Space, with one XSS vulnerability scoring 9.0 on the CVSS scale that could allow attackers to execute commands with administrative privileges. Additional updates addressed denial-of-service vulnerabilities, arbitrary file download issues, and privilege escalation bugs across the platform suite.

• Critical XSS vulnerability (CVE-2025-59978) in Junos Space allows remote code execution with admin privileges
• Over 200 security defects patched across Junos Space and Security Director platforms
• Junos OS updates resolve denial-of-service flaws and unauthorized access vulnerabilities
• No known active exploitation reported, but immediate patching recommended due to lack of workarounds