VulnCheck KEV: CVE-2024-55956

Cleo Harmony, VLTrader, and LexiCom, which are managed file transfer products, contain an unrestricted file upload vulnerability that could allow an unauthenticated user to import and execute arbitrary bash or PowerShell commands on the host system by leveraging the default settings of the...

Error: "Unable to Create Deployment" on StoreFront

The installation of StoreFront fails and the error message “Unable to Create Deployment ” is displayed on the console: The following are the Event Viewer Errors: Source: Citrix Delivery Services AdminEvent ID: 1Description:...

Error: Unable to Create Deployment in StoreFront

When creating a new deployment in StoreFront, the deployment fails with the following error: "Unable to Create Deployment " This error is logged in Event Viewer: New Server Deployment Citrix.DeliveryServices.PowerShell.Command.Runner.Exceptions.PowerShellExecutionException: An error occured runni...

PT-2023-5323 · Microsoft +1 · Powershell +2

Name of the Vulnerable Software and Affected Versions: Adobe Acrobat Reader versions 23.003.20244 and earlier Adobe Acrobat Reader versions 20.005.30467 and earlier Adobe Acrobat 2020 Adobe Acrobat Reader 2020 Description: The issue is related to an Untrusted Search Path vulnerability and imprope...

Store Creation Fails with "Set-DSNewClusterEnvironment" privilege related errors

The below error occured when the user is creating new stores on the Storefront server: Citrix.DeliveryServices.PowerShell.Command.RunnerInterfaces.Exceptions.PowerShellExecutionException: An error occurred running the command: 'Set-DSNewClusterEnvironment' Not possible to enable all the required...

Powershell Exec, Reverse TCP Stager with UUID Support

Execute an x86 payload from a command via PowerShell. Connect back to the attacker with UUID Support Module Options msf use payload/cmd/windows/powershell/meterpreter/reversetcpuuid msf payloadreversetcpuuid show actions ...actions... msf payloadreversetcpuuid set ACTION msf payloadreversetcpuuid...

Iranian Hackers Using New PowerShell Backdoor in Cyber Espionage Attacks

An advanced persistent threat group with links to Iran has updated its malware toolset to include a novel PowerShell-based implant called PowerLess Backdoor, according to new research published by Cybereason. The Boston-headquartered cybersecurity company attributed the malware to a hacking group...

McAfee MVISION EDR Command Injection Vulnerability

Mcafee McAfee MVISION EDR is an EDR product from Mcafee, Inc. that collects endpoint action logs and analyzes them with AI to detect malicious actions and take countermeasures. A command injection vulnerability exists in MVISION EDR that allows an authenticated MVEDR administrator to trigger an E...

Error: Unable to Create Authentication Service for Receiver StoreFront

This article is intended for Citrix administrators and technical teams only.Non-admin users must contact their company’s Help Desk/IT support team and can refer toCTX297149for more information During the initial setup of Receiver StoreFront server on either deployment option, Single or...

CVE-2020-29552

An issue was discovered in URVE Build 24.03.2020. By using the internal/pc/vpro.php?mac=0&ip=0&operation=0&usr=0&pass=0%3bpowershell+-c+" substring, it is possible to execute a Powershell command and redirect its output to a file under the web root...

Urve Operating System Command Injection Vulnerability

Urve is a device for booking meeting rooms/rooms from Urve UK. The appliance supports integration with MS Exchange, Lotus, Office 365, Google Calendar and other systems to support meeting room and guest room reservations. Urve Build 24.03.2020 suffers from an operating system command injection...

PT-2020-17188 · Urve · Urve

Name of the Vulnerable Software and Affected Versions: URVE Build 24.03.2020 Description: An issue was discovered in URVE. By using the " internal/pc/vpro.php?mac=0&ip=0&operation=0&usr=0&pass=0%3bpowershell+-c+" substring, it is possible to execute a Powershell command and redirect its output to...

Storefront 3.12 - Cannot Join Server Group - Joining the Server Group failed. Joiner cleanup was unsuccessful. Please refer to the Windows Event Log for Details

When attempting to add a Storefront Server to a Server group the following error is observed on Joiner Server: Error:Cannot Join Server Group - Joining the Server Group failed. Joiner cleanup was unsuccessful. Please refer to the Windows Event Log for Details. See image below Event logs: Event 1 ...

Description of Update Rollup 4 for System Center 2012 Operations Manager Service Pack 1

Description of Update Rollup 4 for System Center 2012 Operations Manager Service Pack 1 Symptoms Issues that Update Rollup 4 fixes are as follows. Operations Manager KB2880799 Issue 1 Windows PowerShell scripts or modules cannot be executed in an AllSigned environment. Symptom You receive the...

CVE-2018-20753

Kaseya VSA RMM before R9.3 9.3.0.35, R9.4 before 9.4.0.36, and R9.5 before 9.5.0.5 allows unprivileged remote attackers to execute PowerShell payloads on all managed devices. In January 2018, attackers actively exploited this vulnerability in the wild...

Unable-to-refresh-Storefront-Console

Event Viewer error: "An error occured during refresh. An error occured running the command: 'Get-DSWebReceiversSummary' Citrix.DeliveryServices.PowerShell.Command.Runner.Exceptions.PowerShellExecutionException: An error occured running the command: 'Get-DSWebReceiversSummary' ---...