Vulnerabilities > Citrix

DATE CVE VULNERABILITY TITLE RISK
2018-07-03 CVE-2017-2615 Quick emulator (QEMU) built with the Cirrus CLGD 54xx VGA emulator support is vulnerable to an out-of-bounds access issue.
network
low complexity
qemu redhat citrix debian xen
critical
9.1
2018-06-21 CVE-2018-3665 Information Exposure vulnerability in multiple products
System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel.
5.6
2018-05-23 CVE-2018-10654 Deserialization of Untrusted Data vulnerability in Citrix Xenmobile Server 10.7/10.8
There is a Hazelcast Library Java Deserialization Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.
network
high complexity
citrix CWE-502
8.1
2018-05-23 CVE-2018-10653 XXE vulnerability in Citrix Xenmobile Server 10.7/10.8
There is an XML External Entity (XXE) Processing Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.
network
low complexity
citrix CWE-611
critical
9.8
2018-05-23 CVE-2018-10652 Information Exposure vulnerability in Citrix Xenmobile Server 10.7
There is a Sensitive Data Leakage issue in Citrix XenMobile Server 10.7 before RP3.
network
low complexity
citrix CWE-200
7.5
2018-05-23 CVE-2018-10651 Open Redirect vulnerability in Citrix Xenmobile Server 10.7/10.8
There are Open Redirect Vulnerabilities in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.
network
low complexity
citrix CWE-601
6.1
2018-05-23 CVE-2018-10650 Untrusted Search Path vulnerability in Citrix Xenmobile Server 10.7/10.8
There is an Insufficient Path Validation Vulnerability in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.
local
low complexity
citrix CWE-426
7.8
2018-05-23 CVE-2018-10649 Cross-site Scripting vulnerability in Citrix Xenmobile Server 10.7
There is a Cross-Site Scripting Vulnerability in Citrix XenMobile Server 10.7 before RP3.
network
low complexity
citrix CWE-79
6.1
2018-05-23 CVE-2018-10648 Unrestricted Upload of File with Dangerous Type vulnerability in Citrix Xenmobile Server 10.7/10.8
There are Unauthenticated File Upload Vulnerabilities in Citrix XenMobile Server 10.8 before RP2 and 10.7 before RP3.
network
low complexity
citrix CWE-434
critical
9.8
2018-05-17 CVE-2018-7218 Unspecified vulnerability in Citrix products
The AppFirewall functionality in Citrix NetScaler Application Delivery Controller and NetScaler Gateway 10.5 before Build 68.7, 11.0 before Build 71.24, 11.1 before Build 58.13, and 12.0 before Build 57.24 allows remote attackers to execute arbitrary code via unspecified vectors.
network
low complexity
citrix
critical
9.8