First published: Thu Mar 07 2013(Updated: )
Cross-site scripting (XSS) vulnerability in the Receiver Web User Interface on Trimble Infrastructure GNSS Series Receivers NetR3, NetR5, NetR8, and NetR9 before 4.70, and NetRS before 1.3-2, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Trimble Infrastructure GNSS Series Receivers | =netr3 | |
Trimble Infrastructure GNSS Series Receivers | =netr5 | |
Trimble Infrastructure GNSS Series Receivers | =netr8 | |
Trimble Infrastructure GNSS Series Receivers | =netr9 | |
Trimble Infrastructure Gnss Series Receivers Firmware | <=4.41b | |
Trimble Infrastructure GNSS Series Receivers | =netrs | |
Trimble Infrastructure Gnss Series Receivers Firmware | <=1.3-1 | |
All of | ||
Any of | ||
Trimble Infrastructure Gnss Series Receiver Netr3 | ||
Trimble Infrastructure Gnss Series Receiver Netr5 | ||
Trimble Infrastructure Gnss Series Receiver Netr8 | ||
Trimble Infrastructure Gnss Series Receiver Netr9 | ||
Trimble Infrastructure Gnss Series Receiver Firmware | <4.7.0 | |
All of | ||
Trimble Infrastructure Netrs Receiver | ||
Trimble Infrastructure Netrs Receiver Firmware | <1.3-2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.