In Citrix XenMobile Server through 10.12 RP9, there is an Authenticated Command Injection vulnerability, leading to remote code execution with root privileges.
2022-04-13T00:15:19.693
2024-11-21T06:31:08.943
Modified
CVSSv3.1: 8.8 (HIGH)
AV:N/AC:L/Au:S/C:C/I:C/A:C
8.0
10.0
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | citrix | xenmobile_server | 10.13.0 | Yes |
| Application | citrix | xenmobile_server | 10.13.0 | Yes |
| Application | citrix | xenmobile_server | 10.13.0 | Yes |
| Application | citrix | xenmobile_server | 10.13.0 | Yes |
| Application | citrix | xenmobile_server | 10.13.0 | Yes |
| Application | citrix | xenmobile_server | 10.14.0 | Yes |
| Application | citrix | xenmobile_server | 10.14.0 | Yes |
| Application | citrix | xenmobile_server | 10.14.0 | Yes |
| Application | citrix | xenmobile_server | 10.14.0 | Yes |