Published: 17/08/2020 Updated: 20/08/2020

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Improper access control in Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.10 before RP6 and Citrix XenMobile Server prior to 10.9 RP5 and leads to the ability to read arbitrary files.

Vulnerable Product	Search on Vulmon	Subscribe to Product
citrix xenmobile server
citrix xenmobile server 10.9.0
citrix xenmobile server 10.10.0
citrix xenmobile server 10.11.0
citrix xenmobile server 10.12.0

Description of Problem Multiple vulnerabilities have been discovered in Citrix Endpoint Management (CEM), also referred to as XenMobile These vulnerabilities have the following identifiers: CVE-2020-8208 CVE-2020-8209 CVE-2020-8210 CVE-2020-8211 CVE-2020-8212 CVE-2020-8253   The following versions of Citrix Endpo ...

该脚本为Citrix XenMobile 目录遍历漏洞（CVE-2020-8209）批量检测脚本。

使用方法&免责声明该脚本为Citrix XenMobile 目录遍历漏洞（CVE-2020-8209）批量检测脚本。使用方法：Python CVE-2020-8209-Multiplepy urltxt 存在漏洞的地址输出在vultxt中影响版本： RP2之前的Citrix XenMobile Server 1012 RP4之前的Citrix XenMobile Server 1011 RP6之前的Citrix XenMobile Server 1010 RP5之前

CWE-22 https://support.citrix.com/article/CTX277457 https://nvd.nist.gov https://github.com/B1anda0/CVE-2020-8209 https://support.citrix.com/article/CTX277457

CVE-2020-8209

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect