CyberSec.Space Logo
Back to CVE Browser

CVE-2018-14007

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1930%
EPSS Percentile21.92th
PublishedAug 15, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

Citrix XenServer 7.1 and newer allows Directory Traversal.

Affected Platforms (CPE)

πŸ“¦
Citrix

Xenserver

= 7.1
πŸ“¦
Citrix

Xenserver

= 7.4
πŸ“¦
Citrix

Xenserver

= 7.5

References & Advisories

πŸ”— http://www.securityfocus.com/bid/105110
πŸ”— http://xenbits.xen.org/xsa/advisory-271.html
πŸ”— https://support.citrix.com/article/CTX236548
πŸ”— http://www.securityfocus.com/bid/105110
πŸ”— http://xenbits.xen.org/xsa/advisory-271.html
πŸ”— https://support.citrix.com/article/CTX236548

Related Vulnerabilities

CVE-2014-494710.0

Buffer overflow in the HVM graphics console support in Citrix XenServer 6.2 Service Pack 1 and earlier has unspecified impact and ...

CVE-2016-53029.8

Citrix XenServer 7.0 before Hotfix XS70E003, when a deployment has been upgraded from an earlier release, might allow remote attac...

CVE-2013-67959.3

The Updater in Rackspace Openstack Windows Guest Agent for XenServer before 1.2.6.0 allows remote attackers to execute arbitrary c...

CVE-2009-37598.8

Multiple cross-site request forgery (CSRF) vulnerabilities in sample code in the XenServer Resource Kit in Citrix XenCenterWeb all...