CVE-2010-0633

Опубликовано: 12 фев. 2010

Источник: nvd

CVSS2: 4.6

EPSS Низкий

Описание

Unspecified vulnerability in Citrix XenServer 5.0 Update 3 and earlier, and 5.5, allows local users to bypass authentication and execute unspecified Xen API (XAPI) calls via unknown vectors.

Ссылки

http://secunia.com/advisories/38431
Vendor Advisory
http://support.citrix.com/article/CTX123193
Patch
http://support.citrix.com/article/CTX123456
Patch
Vendor Advisory
http://support.citrix.com/article/CTX123460
Patch
http://www.securityfocus.com/bid/38052
http://www.securitytracker.com/id?1023530
http://www.vupen.com/english/advisories/2010/0290
Vendor Advisory
http://secunia.com/advisories/38431
Vendor Advisory
http://support.citrix.com/article/CTX123193
Patch
http://support.citrix.com/article/CTX123456
Patch
Vendor Advisory
http://support.citrix.com/article/CTX123460
Patch
http://www.securityfocus.com/bid/38052
http://www.securitytracker.com/id?1023530
http://www.vupen.com/english/advisories/2010/0290
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:citrix:xenserver:*:update_3:*:*:*:*:*:*

Версия до 5.0 (включая)

cpe:2.3:a:citrix:xenserver:5.5:*:*:*:*:*:*:*

EPSS

Процентиль: 21%

0.00066

Низкий

4.6 Medium

CVSS2

Дефекты

NVD-CWE-noinfo

Связанные уязвимости

GHSA-w686-r764-pjr6

github

почти 4 года назад