CVE-2018-18013
HIGHCitrix XenMobile Server < 10.8.0 - Unauthenticated Remote Code Execution via Java Deserialization
Title source: llmDescription
* Xen Mobile through 10.8.0 includes a service listening on port 5001 within its firewall that accepts unauthenticated input. If this service is supplied with raw serialised Java objects, it deserialises them back into Java objects in memory, giving rise to a remote code execution vulnerability. NOTE: the vendor disputes that this is a vulnerability, stating it is "already mitigated by the internal firewall that limits access to configuration services to localhost.
References (1)
Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
https://advisories.dxw.com/advisories/xen-mobile-vulnerable-to-code-execution-via-object-serialisation/
Scores
CVSS v3
7.8
EPSS
0.0024
EPSS Percentile
47.4%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
CWE
CWE-502
Status
published
Products (1)
citrix/xenmobile_server
< 10.8.0
Published
Oct 24, 2018
Tracked Since
Feb 18, 2026