Citrix StoreFront Server - XML External Entity

Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 3.12.4000, and 7.6 LTSR before CU8 3.0.8000 allows XXE attacks. id: CVE-2019-13608 info: name: Citrix StoreFront Server - XML External Entity author: daffainfo severity: high description: | Citrix StoreFront Server before 1903, 7.15 LTSR...

EUVD-2020-29077

Malware in sbrugna...

CVAD 2402 - Citrix Storefront SSO failed after change the Base URL

After the customer modified the Base URL setting to use a different hostname, single sign-on SSO functionality stopped working for all users across the environment. However, when the Base URL is reverted back to the original hostname of the StoreFront server, single sign-on resumes normal operati...

CVE-2022-27503

Cross-site Scripting XSS vulnerability in Citrix StoreFront affects version 1912 before CU5 and version 3.12 before CU9...

CVE-2020-8200

Improper authentication in Citrix StoreFront Server 1912.0.1000 allows an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server...

CVE-2019-13608

Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 3.12.4000, and 7.6 LTSR before CU8 3.0.8000 allows XXE attacks...

How to Fix the Uninstall of StoreFront

This article describes how to fix the uninstall of Citrix StoreFront when installed using a non-English UI. When StoreFront is installed under these conditions, uninstall will fail with error code 1605, erroneously indicating the product is not installed...

Citrix Systems StoreFront Server Cross-Site Scripting Vulnerability

Citrix Systems StoreFront Server, a Citrix Systems company, is an integral component of Xen virtualization as part of the authentication and delivery management process. A cross-site scripting vulnerability exists in Citrix Systems StoreFront Server that stems from the presence of a cross-site...

Citrix StoreFront Security Bulletin for CVE-2023-5914

A vulnerability has been discovered in Citrix StoreFront, which, if exploited, may result in a Cross-site scripting XSS attack. Affected Versions: The following supported versions of Citrix StoreFront are affected by the vulnerability: Current Release CR Citrix StoreFront before 2308.1 Citrix...

Error code 1603 received when trying to upgrade Storefront

An error displays during Storefront upgrade "\CitrixStoreFront-x64.msi failed with error code 1603"...

Storefront Installation Error Adding Local Administrators to CitrixStorefrontAdministrators Group

Install StoreFront with below error: There was an error adding user accounts in the Administrators local group to the CitrixStorefrontAdministrators local group.See the log files described in the article 'Troubleshoot Storefront' in the Storefront product documentation. Try adding these user...

Explanation of Citrix Storefront Default Appliance

Explain default appliance gateway usage for Storefront store...

Citrix StoreFront Server XXE (CTX477616)

Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 3.12.4000, and 7.6 LTSR before CU8 3.0.8000 allows XXE attacks. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 80900 C Tenable, Inc...

Store Creation Fails with "Set-DSNewClusterEnvironment" privilege related errors

The below error occured when the user is creating new stores on the Storefront server: Citrix.DeliveryServices.PowerShell.Command.RunnerInterfaces.Exceptions.PowerShellExecutionException: An error occurred running the command: 'Set-DSNewClusterEnvironment' Not possible to enable all the required...

Citrix Storefront Installed (Windows)

Binary data citrixstorefrontwininstalled.nbin...

Citrix Workspace App For Linux 2212 Credential Leak Vulnerability

The Citrix Linux client emits its session credentials when starting a Citrix session. These credentials end up being recorded in the client's system log. Citrix does not consider this to be a security vulnerability. Citrix Workspace App for Linux versions 2212 is affected. Citrix Linux client...

Citrix Workspace App For Linux 2212 Credential Leak

Citrix Linux client credential leak The Citrix Linux client emits its session credentials when starting a Citrix session. These credentials end up being recorded in the client's system log. Citrix do not consider this to be a security vulnerability. Software affected - Citrix Workspace App for...

Failed to add admin accounts to the citrixstorefrontadministrator local group

In the installation log, there are the error： 2022/11/8 16:04:535084Information CreateAccountGroup:GroupName=CitrixStoreFrontAdministrators GroupDesc=允许使用Citrix Replication Service的用户、组和计算机。 2022/11/8 16:04:535084Error AccountHelper::CreateAccountGroup Exception caught creating account group:...

STIG V-218773 - Recycling IIS App Pools on Storefront Servers

Address STIGV-218773 compatibility with Citrix Storefront vis a vis of the virtual memory an application pool uses...

CVE-2022-27503

Cross-site Scripting XSS vulnerability in Citrix StoreFront affects version 1912 before CU5 and version 3.12 before CU9...