CVE-2013-5210: XSS
First published: Mon Dec 30 2013(Updated: )
Cross-site scripting (XSS) vulnerability in the GUI login page in ADTRAN AOS before R10.8.1 on the NetVanta 7100 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ADTRAN AOS | <=10.8.0 | |
| Adtran Netvanta 7060 | ||
| Adtran NetVanta 7100 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability severity of CVE-2013-5210?
The severity of CVE-2013-5210 is considered to be medium due to the potential for remote attackers to execute arbitrary web scripts on the affected system.
How can I mitigate the issues associated with CVE-2013-5210?
To mitigate CVE-2013-5210, it is recommended to upgrade ADTRAN AOS to version 10.8.1 or later, where the vulnerability has been addressed.
What products are affected by CVE-2013-5210?
CVE-2013-5210 affects ADTRAN AOS versions before R10.8.1 and specifically impacts the Adtran NetVanta 7060 and NetVanta 7100 devices.
Can CVE-2013-5210 be exploited remotely?
Yes, CVE-2013-5210 can be exploited remotely, allowing attackers to inject malicious scripts via the GUI login page.
What is the nature of the vulnerability in CVE-2013-5210?
CVE-2013-5210 is a cross-site scripting (XSS) vulnerability that allows the injection of arbitrary HTML or web scripts.
- agent/references
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/adtran
- canonical/adtran aos
- version/adtran aos/10.8.0
- canonical/adtran netvanta 7060
- canonical/adtran netvanta 7100