Published: 13/07/2016 Updated: 14/07/2016

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 4.3 | Impact Score: 3.6 | Exploitability Score: 0.7

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

Citrix Worx Home for iOS prior to 10.3.6 and XenMobile MDX Toolkit for iOS prior to 10.3.6 might allow physically proximate malicious users to bypass in-application Apple Touch ID authentication via unspecified vectors, related to an application requiring re-authentication.

Vulnerable Product	Search on Vulmon	Subscribe to Product
citrix xenmobile mdx toolkit 10.3.0
citrix xenmobile mdx toolkit 10.3.5
citrix worx home 10.3.5
citrix worx home 10.3.1
citrix worx home 10.3.0

Description of Problem A vulnerability has been identified that affects iOS applications using the XenMobile MDX Toolkit  An attacker with physical access to the device could bypass in-application Apple Touch ID authentication in some cases where re-authentication is required This vulnerability affects the following products: XenMobile MDX T ...

CWE-284 http://support.citrix.com/article/CTX214006 https://nvd.nist.gov https://support.citrix.com/article/CTX214006

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-5109

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect