Description
Citrix XenApp 6.x before 6.5 HRP07 and 7.x before 7.9 and Citrix XenDesktop before 7.9 might allow attackers to weaken an unspecified security mitigation via vectors related to memory permission.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1036539
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/92316
Vendor Advisory x_refsource_confirm
http://support.citrix.com/article/CTX215460
Scores
CVSS v3
9.8
EPSS
0.0217
EPSS Percentile
84.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-254
Status
published
Products (9)
citrix/xenapp
6.0.0.0
citrix/xenapp
6.5.0.0
citrix/xenapp
7.0.0.0
citrix/xenapp
7.1.0.0
citrix/xenapp
7.5.0.0
citrix/xenapp
7.6.0.0
citrix/xenapp
7.7.0.0
citrix/xenapp
7.8.0.0
citrix/xendesktop
< 7.8
Published
Aug 19, 2016
Tracked Since
Feb 18, 2026