CVE-2023-6184

🗓️ 18 Jan 2024 01:04:15Reported by CitrixType

Citrix Session Recording XSS vulnerability

Reporter	Title	Published	Views	Family All 15
BDU FSTEC	The vulnerability of the Session Recording component of software for virtualization and application delivery in Citrix Virtual Apps and Desktops (formerly XenApp and XenDesktop) allows a attacker to execute arbitrary code.	24 Jan 202400:00	–	bdu_fstec
Circl	CVE-2023-6184	6 Feb 202408:41	–	circl
Tenable Nessus	Citrix Virtual Apps and Desktops RCE (CTX583930)	18 Jan 202400:00	–	nessus
CNNVD	Citrix Systems Session Recording Security Vulnerability	18 Jan 202400:00	–	cnnvd
Citrix	Citrix Session Recording Security Bulletin for CVE-2023-6184	16 Jan 202413:03	–	citrix
Citrix	CVAD Session Recording Hub Article	14 Jul 202400:00	–	citrix
CVE	CVE-2023-6184	18 Jan 202401:04	–	cve
Nuclei	Citrix StoreFront - Cross-Site Scripting	26 Jun 202618:13	–	nuclei
NVD	CVE-2023-6184	18 Jan 202401:15	–	nvd
OSV	CVE-2023-6184	18 Jan 202401:15	–	osv

[
  {
    "defaultStatus": "unaffected",
    "product": "Citrix Session Recording",
    "vendor": "Cloud Software Group",
    "versions": [
      {
        "lessThan": "0",
        "status": "affected",
        "version": "2311 Current Release",
        "versionType": "patch"
      },
      {
        "lessThan": "CU8 hotfix 19.12.8100.4",
        "status": "affected",
        "version": "1912 LTSR ",
        "versionType": "patch"
      },
      {
        "lessThan": "CU4",
        "status": "affected",
        "version": "2203 LTSR",
        "versionType": "patch"
      }
    ]
  }
]

Source	Link
support	www.support.citrix.com/article/CTX583930/citrix-session-recording-security-bulletin-for-cve20236184

18 Jan 2024 01:04Current

6.9Medium risk

Vulners AI Score6.9

CVSS 3.15

EPSS0.4661

CWE-913