PT-2018-10029 · Citrix · Citrix Xenmobile Server

Published

2018-05-23

Updated

2018-06-25

CVE-2018-10650

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Citrix XenMobile Server versions 10.7 before RP3 Citrix XenMobile Server versions 10.8 before RP2

Description The issue is related to an Insufficient Path Validation.

Recommendations For Citrix XenMobile Server versions 10.7 before RP3, update to RP3 or later. For Citrix XenMobile Server versions 10.8 before RP2, update to RP2 or later.

Fix

Untrusted Search Path

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-426

Related Identifiers

CVE-2018-10650

Affected Products

Citrix Xenmobile Server

PT-2018-10029 · Citrix · Citrix Xenmobile Server

CVE-2018-10650

Weakness Enumeration

Related Identifiers

Affected Products

References · 3