CVE-2013-2639

NONE
Published Feb 11, 201412y ago · Modified Jun 16, 20262w ago
Find Similar
Published Feb 11, 2014 12y ago
Last Modified Jun 16, 2026 2w ago

Description

Cross-site scripting (XSS) vulnerability in CTERA Cloud Storage OS before 3.2.29.0, 3.2.42.0, and earlier allows remote attackers to inject arbitrary web script or HTML via the description in a project folder.

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 2

VendorProductVersionRange
cteracloud_storage_os3.2.29.0any
cteracloud_storage_os3.2.42.0any

References 2

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.