Ctera · Ctera Cloud Storage Os · CVE-2013-2639
**Name of the Vulnerable Software and Affected Versions**
CTERA Cloud Storage OS versions prior to 3.2.29.0
CTERA Cloud Storage OS versions prior to 3.2.42.0
**Description**
A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the description in a project folder. This can lead to the execution of malicious scripts on the client-side.
**Recommendations**
For versions prior to 3.2.29.0, update to version 3.2.29.0 or later.
For versions prior to 3.2.42.0, update to version 3.2.42.0 or later.