CVE-2020-8209

HIGH EXPLOITED IN THE WILD NUCLEI

Citrix XenMobile <10.12 - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2020-8209 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io). EIP tracks 1 public exploit from researchers including B1anda0. A Nuclei detection template is also available.

AI-analyzed exploit summary The repository contains a Python script that scans for CVE-2020-8209, a directory traversal vulnerability in Citrix XenMobile. It checks for the presence of '/etc/passwd' via a crafted HTTP request but does not exploit the vulnerability beyond detection.

Description

Improper access control in Citrix XenMobile Server 10.12 before RP2, Citrix XenMobile Server 10.11 before RP4, Citrix XenMobile Server 10.10 before RP6 and Citrix XenMobile Server before 10.9 RP5 and leads to the ability to read arbitrary files.

Exploits (1)

nomisec SCANNER 31 stars
by B1anda0 · infoleak
https://github.com/B1anda0/CVE-2020-8209

The repository contains a Python script that scans for CVE-2020-8209, a directory traversal vulnerability in Citrix XenMobile. It checks for the presence of '/etc/passwd' via a crafted HTTP request but does not exploit the vulnerability beyond detection.

Classification
Scanner 95%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: Citrix XenMobile Server (versions before RP2 for 10.12, RP4 for 10.11, RP6 for 10.10, RP5 for 10.9)
No auth needed
Prerequisites: Network access to the target Citrix XenMobile server
devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

Citrix XenMobile Server - Local File Inclusion
HIGHby dwisiswant0

References (1)

Core 1
Core References
Vendor Advisory x_refsource_misc
https://support.citrix.com/article/CTX277457

Scores

CVSS v3 7.5
EPSS 0.9244
EPSS Percentile 99.7%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Details

VulnCheck KEV 2023-11-14
InTheWild.io 2021-01-20
CWE
CWE-22
Status published
Products (5)
citrix/xenmobile_server 10.9.0 (5 CPE variants)
citrix/xenmobile_server 10.10.0 (6 CPE variants)
citrix/xenmobile_server 10.11.0 (4 CPE variants)
citrix/xenmobile_server 10.12.0 (2 CPE variants)
citrix/xenmobile_server < 10.8.0
Published Aug 17, 2020
Tracked Since Feb 18, 2026