Published: 16/06/2017 Updated: 07/07/2017

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

XML external entity (XXE) vulnerability in Citrix XenMobile Server 9.x and 10.x prior to 10.5 RP3 allows malicious users to obtain sensitive information via unspecified vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
citrix xenmobile server 10.3.6
citrix xenmobile server 10.4
citrix xenmobile server 10.0
citrix xenmobile server 10.1
citrix xenmobile server 10.3
citrix xenmobile server 10.3.5
citrix xenmobile server 10.5
citrix xenmobile server 9.0

Description of Problem An XML External Entity (XXE) processing vulnerability has been identified in Citrix XenMobile Server that could allow an unauthenticated attacker to retrieve potentially sensitive information from the server This vulnerability has been assigned the following CVE number: CVE-2017-9231: XML External Entity (XXE) Processing Vul ...

CWE-611 https://support.citrix.com/article/CTX220138 http://www.securityfocus.com/bid/98995 http://www.securitytracker.com/id/1038704 https://nvd.nist.gov https://support.citrix.com/article/CTX220138

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-9231

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect