Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2016/06/28 12:0 a.m.36 views

Citrix XenServer Active Directory Authentication Incorrect Host Management Security Bypass (CTX213549, CTX213769)

The version of Citrix XenServer running on the remote host is 7.x prior to 7.0 hotfix XS70E003. It is, therefore, affected by a security bypass vulnerability due to incorrect handling of Active Directory AD credentials. An unauthenticated, remote attacker on the management network with AD...

9.8CVSS8.6AI score0.02551EPSS
Exploits0References3
CNVD
CNVD
added 2016/06/14 12:0 a.m.5 views

Citrix XenServer Insecure Host Management AD Authentication Vulnerability

The Citrix XenServer product line is an enterprise-class platform that manages server virtualization in the data center by flexibly aggregating compute and storage resources. A security vulnerability in XenServer Hotfix XS70E003 prior to version 7.0 could allow a user with Active Directory...

9.8CVSS6.8AI score0.02551EPSS
Exploits0References1
Prion
Prion
added 2016/06/13 2:59 p.m.26 views

Code injection

Citrix XenServer 7.0 before Hotfix XS70E003, when a deployment has been upgraded from an earlier release, might allow remote attackers on the management network to "compromise" a host by leveraging credentials for an Active Directory account...

7.5CVSS7.2AI score0.02551EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2016/06/13 2:0 p.m.66 views

CVE-2016-5302

CVE-2016-5302 affects Citrix XenServer 7.0 before hotfix XS70E003, where deployments upgraded from an earlier release are vulnerable to AD credential abuse on the management network. An unauthenticated attacker with AD credentials for an account not authorized to manage a XenServer host can remot...

9.8CVSS9.4AI score0.02551EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder