Citrix Command Center prior to 5.1 Build 35.4 and 5.2 before Build 42.7 does not properly restrict access to the Advent Java Management Extensions (JMX) Servlet, which allows remote malicious users to execute arbitrary code via unspecified vectors to servlets/Jmx_dynamic.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
citrix command center 5.1 |
||
citrix command center 5.2 |