Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-8210
Insufficient protection of secrets in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server prior to 10.9 RP5 discloses credentials of a service account.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.10.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.12.0
6.1
CVSSv3
CVE-2020-8208
Improper input validation in Citrix XenMobile Server 10.12 before RP1, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.11 before RP6 and Citrix XenMobile Server prior to 10.9 RP5 allows Cross-Site Scripting (XSS).
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.10.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.12.0
9.8
CVSSv3
CVE-2020-8211
Improper input validation in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server prior to 10.9 RP5 allows SQL Injection.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.10.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.12.0
7.5
CVSSv3
CVE-2020-8253
Improper authentication in Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.10 before RP6 and Citrix XenMobile Server prior to 10.9 RP5 leads to the ability to access sensitive files.
Citrix Xenmobile Server
Citrix Xenmobile Server 10.9.0
Citrix Xenmobile Server 10.10.0
Citrix Xenmobile Server 10.11.0
Citrix Xenmobile Server 10.12.0
NA
CVE-2002-2426
Cross-site request forgery (CSRF) vulnerability in Citrix Presentation Server 4.0 and 4.5, MetaFrame Presentation Server 3.0, and Access Essentials 1.0 up to and including 2.0 allows remote malicious users to execute arbitrary published applications, and possibly other programs, ...
Citrix Presentation Server 4.0
Citrix Presentation Server 4.5
Citrix Access Essentials 2.0
Citrix Metaframe Presentation Server 3.0
Citrix Access Essentials 1.0
Citrix Access Essentials 1.5
NA
CVE-2015-5080
The Management Interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.1 prior to 10.1.132.8, 10.5 before Build 56.15, and 10.5.e before Build 56.1505.e allows remote authenticated users to execute arbitrary shell commands via shell metacharac...
Citrix Netscaler Application Delivery Controller Firmware 10.1.123
Citrix Netscaler Application Delivery Controller Firmware 10.1.124
Citrix Netscaler Application Delivery Controller Firmware 10.5e
Citrix Netscaler Gateway Firmware 10.1.120.1316.e
Citrix Netscaler Application Delivery Controller Firmware 10.1
Citrix Netscaler Application Delivery Controller Firmware 10.1.120.1316.e
Citrix Netscaler Application Delivery Controller Firmware 10.1.127
Citrix Netscaler Application Delivery Controller Firmware 10.1.128
Citrix Netscaler Gateway Firmware 10.1.124
Citrix Netscaler Gateway Firmware 10.1.125
Citrix Netscaler Gateway Firmware 10.5.50.10
Citrix Netscaler Gateway Firmware 10.5.51.10
Citrix Netscaler Gateway Firmware 10.1.121
Citrix Netscaler Gateway Firmware 10.1.128
Citrix Netscaler Gateway Firmware 10.1.129
Citrix Netscaler Application Delivery Controller Firmware 10.1.121
Citrix Netscaler Application Delivery Controller Firmware 10.1.122
Citrix Netscaler Application Delivery Controller Firmware 10.1.129
Citrix Netscaler Application Delivery Controller Firmware 10.5
Citrix Netscaler Gateway Firmware 10.1.126
Citrix Netscaler Gateway Firmware 10.1.127
Citrix Netscaler Application Delivery Controller Firmware 10.1.125
NA
CVE-2012-4068
Heap-based buffer overflow in the SoapServer service in Citrix Provisioning Services 5.0, 5.1, 5.6, 5.6 SP1, 6.0, and 6.1 allows remote malicious users to execute arbitrary code via a crafted string associated with date and time data.
Citrix Provisioning Services 6.1
Citrix Provisioning Services 5.6
Citrix Provisioning Services 6.0
Citrix Provisioning Services 5.0
Citrix Provisioning Services 5.1
NA
CVE-2013-2263
Unspecified vulnerability in Citrix Access Gateway Standard Edition 5.0.x prior to 5.0.4.223524 allows remote malicious users to access network resources via unknown attack vectors.
Citrix Access Gateway 5.0
Citrix Access Gateway 5.3
Citrix Access Gateway 5.4
Citrix Access Gateway 5.1
Citrix Access Gateway 5.2
NA
CVE-2007-2850
The Session Reliability Service (XTE) in Citrix MetaFrame Presentation Server 3.0, Presentation Server 4.0, and Access Essentials 1.0 and 1.5, allows remote malicious users to bypass network security policies and connect to arbitrary TCP ports via a modified address:port string.
Citrix Metaframe 3.0
Citrix Metaframe 4.0
Citrix Access Essentials 1.0
Citrix Access Essentials 1.5
NA
CVE-2008-0356
Buffer overflow in the Independent Management Architecture (IMA) service in Citrix Presentation Server (MetaFrame Presentation Server) 4.5 and previous versions, Access Essentials 2.0 and previous versions, and Desktop Server 1.0 allows remote malicious users to execute arbitrary...
Citrix Desktop Server 1.0
Citrix Presentation Server
Citrix Access Essentials
Citrix Metaframe Presentation Server
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »