CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2016-5302

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.0040%
EPSS Percentile20.57th
Published2016年6月13日
Last Modified2026年5月6日

Vulnerability Description

Citrix XenServer 7.0 before Hotfix XS70E003, when a deployment has been upgraded from an earlier release, might allow remote attackers on the management network to "compromise" a host by leveraging credentials for an Active Directory account.

Affected Platforms (CPE)

📦
Citrix

Xenserver

<= 7.0

References & Advisories

🔗 http://support.citrix.com/article/CTX213549
🔗 http://www.securitytracker.com/id/1036082
🔗 https://support.citrix.com/article/CTX213769
🔗 http://support.citrix.com/article/CTX213549
🔗 http://www.securitytracker.com/id/1036082
🔗 https://support.citrix.com/article/CTX213769

相關漏洞威脅

CVE-2014-494710.0

Buffer overflow in the HVM graphics console support in Citrix XenServer 6.2 Service Pack 1 and earlier has unspecified impact and ...

CVE-2018-140079.8

Citrix XenServer 7.1 and newer allows Directory Traversal.

CVE-2013-67959.3

The Updater in Rackspace Openstack Windows Guest Agent for XenServer before 1.2.6.0 allows remote attackers to execute arbitrary c...

CVE-2009-37598.8

Multiple cross-site request forgery (CSRF) vulnerabilities in sample code in the XenServer Resource Kit in Citrix XenCenterWeb all...