Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mercredi 12 août 2020

Critical Vulnerabilities in Citrix XenMobile (CERT-EU Security Advisory 2020-040)

On 11th of August, Citrix released a blog post and Security Update about critical vulnerabilities affected XenMobile servers products. No technical details were shared by Citrix, however some sources indicate that by combining some of those vulnerabilities, an unauthenticated attackers could gain admin control on XenMobile Servers if exploitation is successful. Citrix recommends these upgrades be made immediately. As of this writing, there are no known exploits. However, by analysing security patches, attacker could quickly identify exploits for these vulnerabilities and start scanning for victims exposing XenMobile servers on Internet.

Lien vers l'article source

Auteur: Cert EU

Catégories: CertEUNombre de vues: 109


Événements SSI