Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2020-8209
Improper access control in Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.10 before RP6 and Citrix XenMobile Server prior to 10.9 RP5 and leads to the ability to read arbitrary files.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.10.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.12.0
1 Github repository
445
VMScore
CVE-2020-8210
Insufficient protection of secrets in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server prior to 10.9 RP5 discloses credentials of a service account.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.10.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.12.0
668
VMScore
CVE-2020-8211
Improper input validation in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server prior to 10.9 RP5 allows SQL Injection.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.10.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.12.0
445
VMScore
CVE-2020-8253
Improper authentication in Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.10 before RP6 and Citrix XenMobile Server prior to 10.9 RP5 leads to the ability to access sensitive files.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.10.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.12.0
383
VMScore
CVE-2002-2426
Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 up to and including 2.0 allows remote malicious users to execute arbitrary published applications, and possibly other programs, ...
Citrix Presentation Server 4.0
Citrix Presentation Server 4.5
Citrix Access Essentials 2.0
Citrix Metaframe Presentation Server 3.0
Citrix Access Essentials 1.0
Citrix Access Essentials 1.5
1000
VMScore
CVE-2000-0244
The Citrix ICA (Independent Computing Architecture) protocol uses weak encryption (XOR) for user authentication.
Citrix Metaframe 1.0
Citrix Metaframe
Citrix Winframe 3.5 1.8 For Windows Nt
1 EDB exploit
445
VMScore
CVE-2001-0716
Citrix MetaFrame 1.8 Server with Service Pack 3, and XP Server Service Pack 1 and previous versions, allows remote malicious users to cause a denial of service (crash) via a large number of incomplete connections to the server.
Citrix Metaframe 1.8
Citrix Metaframe Xp Server
Citrix Metaframe
436
VMScore
CVE-2014-4700
Citrix XenDesktop 7.x, 5.x, and 4.x, when pooled random desktop groups is enabled and ShutdownDesktopsAfterUse is disabled, allows local guest users to gain access to another user's desktop via unspecified vectors.
Citrix Xendesktop
Citrix Xendesktop 4.0
Citrix Xendesktop 5.6
NA
CVE-2023-24483
A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA.
Citrix Virtual Apps And Desktops
Citrix Virtual Apps And Desktops 1912
Citrix Virtual Apps And Desktops 2203
NA
CVE-2023-24484
A malicious user can cause log files to be written to a directory that they do not have permission to write to.
Citrix Workspace 1912
Citrix Workspace 2203.1
Citrix Workspace
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »