Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-8209
Improper access control in Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.10 before RP6 and Citrix XenMobile Server prior to 10.9 RP5 and leads to the ability to read arbitrary files.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.12.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.10.0
1 Github repository
7.5
CVSSv3
CVE-2020-8210
Insufficient protection of secrets in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server prior to 10.9 RP5 discloses credentials of a service account.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.12.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.10.0
9.8
CVSSv3
CVE-2020-8211
Improper input validation in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server prior to 10.9 RP5 allows SQL Injection.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.12.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.10.0
NA
CVE-2002-2426
Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 up to and including 2.0 allows remote malicious users to execute arbitrary published applications, and possibly other programs, ...
Citrix Access Essentials 1.0
Citrix Metaframe Presentation Server 3.0
Citrix Access Essentials 2.0
Citrix Presentation Server 4.0
Citrix Presentation Server 4.5
Citrix Access Essentials 1.5
NA
CVE-2015-5080
The Management Interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.1 prior to 10.1.132.8, 10.5 before Build 56.15, and 10.5.e before Build 56.1505.e allows remote authenticated users to execute arbitrary shell commands via shell metacharac...
Citrix Netscaler Application Delivery Controller Firmware 10.1.123
Citrix Netscaler Gateway Firmware 10.1.128
Citrix Netscaler Gateway Firmware 10.5.50.10
Citrix Netscaler Application Delivery Controller Firmware 10.1.122
Citrix Netscaler Gateway Firmware 10.5e
Citrix Netscaler Application Delivery Controller Firmware 10.5e
Citrix Netscaler Application Delivery Controller Firmware 10.1.125
Citrix Netscaler Gateway Firmware 10.1.123
Citrix Netscaler Application Delivery Controller Firmware 10.1.129
Citrix Netscaler Application Delivery Controller Firmware 10.1.120.1316.e
Citrix Netscaler Gateway Firmware 10.1.120.1316.e
Citrix Netscaler Gateway Firmware 10.1.121
Citrix Netscaler Gateway Firmware 10.1.126
Citrix Netscaler Gateway Firmware 10.1.124
Citrix Netscaler Gateway Firmware 10.1.127
Citrix Netscaler Application Delivery Controller Firmware 10.1.126
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Application Delivery Controller Firmware 10.5
Citrix Netscaler Application Delivery Controller Firmware 10.1.128
Citrix Netscaler Gateway Firmware 10.1.122
Citrix Netscaler Gateway Firmware 10.5.51.10
Citrix Netscaler Application Delivery Controller Firmware 10.1.127
NA
CVE-2012-4068
Heap-based buffer overflow in the SoapServer service in Citrix Provisioning Services 5.0, 5.1, 5.6, 5.6 SP1, 6.0, and 6.1 allows remote malicious users to execute arbitrary code via a crafted string associated with date and time data.
Citrix Provisioning Services 6.0
Citrix Provisioning Services 6.1
Citrix Provisioning Services 5.0
Citrix Provisioning Services 5.6
Citrix Provisioning Services 5.1
NA
CVE-2013-2263
Unspecified vulnerability in Citrix Access Gateway Standard Edition 5.0.x prior to 5.0.4.223524 allows remote malicious users to access network resources via unknown attack vectors.
Citrix Access Gateway 5.3
Citrix Access Gateway 5.0
Citrix Access Gateway 5.1
Citrix Access Gateway 5.4
Citrix Access Gateway 5.2
NA
CVE-2007-2850
The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0 and 1.5, allows remote malicious users to bypass network security policies and connect to arbitrary TCP ports via a modified address:port string.
Citrix Access Essentials 1.0
Citrix Metaframe 4.0
Citrix Metaframe 3.0
Citrix Access Essentials 1.5
7.5
CVSSv3
CVE-2021-22919
A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the limi...
Citrix Application Delivery Controller Firmware
Citrix Netscaler Gateway
Citrix Gateway
Citrix Sd-wan Wanop
6
CVSSv3
CVE-2016-10024
Xen up to and including 4.8.x allows local x86 PV guest OS kernel administrators to cause a denial of service (host hang or crash) by modifying the instruction stream asynchronously while performing certain kernel operations.
Xen Xen
Citrix Xenserver 7.0
Citrix Xenserver 6.5
Citrix Xenserver 6.0.2
Citrix Xenserver 6.2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »