CVE-2012-6314

Citrix XenDesktop Virtual Desktop Agent <5.6.200 - Privilege Escala...

Title source: llm
STIX 2.1

Description

Citrix XenDesktop Virtual Desktop Agent (VDA) 5.6.x before 5.6.200, when making changes to the server-side policy that control USB redirection, does not propagate changes to the VDA, which allows authenticated users to retain access to the USB device.

References (6)

Core 6
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/56908
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/88369
Vendor Advisory x_refsource_confirm
http://support.citrix.com/article/CTX135813
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/80626
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id?1027869
Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/51524

Scores

EPSS 0.0067
EPSS Percentile 71.7%

Details

Status published
Products (1)
citrix/xendesktop 5.6
Published Dec 26, 2012
Tracked Since Feb 18, 2026