CVE-2013-4713
01.11.2013, 02:55
Cross-site scripting (XSS) vulnerability in I-O DATA DEVICE RockDisk with firmware before 1.05e1-2.0.5 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
| Vendor | Product | Version |
|---|---|---|
| iodata | rockdisk_firmware | 𝑥 ≤ 1.05c-2.0.3 |
| iodata | rockdisk_firmware | 1.03v3-1.13:v3 |
| iodata | rockdisk_firmware | 1.03w-1.14:w |
| iodata | rockdisk_firmware | 1.03y-1.16:y |
| iodata | rockdisk_firmware | 1.04a-1.2:a |
| iodata | rockdisk_firmware | 1.04b-1.21:b |
| iodata | rockdisk_firmware | 1.04d-2.0.1:d |
| iodata | rockdisk_firmware | 1.04m-2.0.1:m |
| iodata | rockdisk_firmware | 1.04n-2.0.1:n |
| iodata | rockdisk_firmware | 1.04r3-2.0.1:r3 |
| iodata | rockdisk_firmware | 1.04t-2.0.2:t |
| iodata | rockdisk | - |
𝑥
= Vulnerable software versions