Vulnerabilities > Citrix > Xenserver > 7.4

DATE	CVE	VULNERABILITY TITLE	RISK
2018-08-15	CVE-2018-14007	Path Traversal vulnerability in Citrix Xenserver 7.1/7.4/7.5 Citrix XenServer 7.1 and newer allows Directory Traversal. network low complexity citrix CWE-22 critical	9.8
2018-06-21	CVE-2018-3665	Information Exposure vulnerability in multiple products System software utilizing Lazy FP state restore technique on systems using Intel Core-based microprocessors may potentially allow a local process to infer data from another process through a speculative execution side channel. local high complexity intel citrix freebsd redhat debian canonical CWE-200	5.6
2018-05-08	CVE-2018-8897	Race Condition vulnerability in multiple products A statement in the System Programming Guide of the Intel 64 and IA-32 Architectures Software Developer's Manual (SDM) was mishandled in the development of some or all operating-system kernels, resulting in unexpected behavior for #DB exceptions that are deferred by MOV SS or POP SS, as demonstrated by (for example) privilege escalation in Windows, macOS, some Xen configurations, or FreeBSD, or a Linux kernel crash. local low complexity debian canonical redhat citrix synology apple xen freebsd CWE-362	7.8