Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2020-8209
HistoryAug 17, 2020 - 4:15 p.m.

CVE-2020-8209

2020-08-1716:15:13
CWE-22
[email protected]
web.nvd.nist.gov
1

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 High

AI Score

Confidence

High

0.968 High

EPSS

Percentile

99.7%

JSON

Improper access control in Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.10 before RP6 and Citrix XenMobile Server before 10.9 RP5 and leads to the ability to read arbitrary files.

Affected configurations

NVD
Node
citrixxenmobile_serverRange10.8.0
OR
citrixxenmobile_serverMatch10.9.0-
OR
citrixxenmobile_serverMatch10.9.0rolling_patch1
OR
citrixxenmobile_serverMatch10.9.0rolling_patch2
OR
citrixxenmobile_serverMatch10.9.0rolling_patch3
OR
citrixxenmobile_serverMatch10.9.0rolling_patch4
OR
citrixxenmobile_serverMatch10.10.0-
OR
citrixxenmobile_serverMatch10.10.0rolling_patch1
OR
citrixxenmobile_serverMatch10.10.0rolling_patch2
OR
citrixxenmobile_serverMatch10.10.0rolling_patch3
OR
citrixxenmobile_serverMatch10.10.0rolling_patch4
OR
citrixxenmobile_serverMatch10.10.0rolling_patch5
OR
citrixxenmobile_serverMatch10.11.0-
OR
citrixxenmobile_serverMatch10.11.0rolling_patch1
OR
citrixxenmobile_serverMatch10.11.0rolling_patch2
OR
citrixxenmobile_serverMatch10.11.0rolling_patch3
OR
citrixxenmobile_serverMatch10.12.0-
OR
citrixxenmobile_serverMatch10.12.0rolling_patch1

Related

prion 1
nuclei 1
dsquare 1
checkpoint_advisories 1
githubexploit 1
cvelist 1
cve 1
thn 1
threatpost 1
citrix 1
avleonov 1
prion
prion
Improper access control
2020-08-17 16:15:00
nuclei
nuclei
Citrix XenMobile Server - Local File Inclusion
2020-11-16 14:49:51
dsquare
dsquare
Citrix XenMobile Server File Disclosure
2020-11-18 00:00:00
checkpoint_advisories
checkpoint_advisories
Citrix XenMobile Server Directory Traversal (CVE-2020-8209)
2020-11-23 00:00:00
githubexploit
githubexploit
Exploit for Path Traversal in Citrix Xenmobile Server
2020-11-17 07:20:46
cvelist
cvelist
CVE-2020-8209
2020-08-17 15:37:15
cve
cve
CVE-2020-8209
2020-08-17 16:15:13
thn
thn
Critical Flaws Affect Citrix Endpoint Management (XenMobile Servers)
2020-08-11 20:17:00
threatpost
threatpost
Citrix Warns of Critical Flaws in XenMobile Server
2020-08-12 15:17:39
citrix
citrix
Citrix Endpoint Management (CEM) Security Update
2020-08-11 04:00:00
avleonov
avleonov
Security News: Exchange ProxyShell, Zoom RCE, Citrix Canceled PT Acknowledgments, Cisco No Patch Router RCEs
2021-08-31 23:16:51

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7.5 High

AI Score

Confidence

High

0.968 High

EPSS

Percentile

99.7%

JSON
Related for NVD:CVE-2020-8209
prion1nuclei1dsquare1checkpoint_advisories1githubexploit1cvelist1cve1thn1threatpost1citrix1avleonov1