Описание
Citrix XenDesktop 7.x, 5.x, and 4.x, when pooled random desktop groups is enabled and ShutdownDesktopsAfterUse is disabled, allows local guest users to gain access to another user's desktop via unspecified vectors.
Ссылки
- Third Party Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- PatchVendor Advisory
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1Версия от 5.0 (включая) до 5.6 (включая)Версия от 7.0 (включая) до 7.11 (включая)
Одно из
cpe:2.3:a:citrix:xendesktop:*:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xendesktop:*:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xendesktop:4.0:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xendesktop:4.0:fp1:*:*:*:*:*:*
cpe:2.3:a:citrix:xendesktop:4.0:fp2:*:*:*:*:*:*
cpe:2.3:a:citrix:xendesktop:5.6:fp1:*:*:*:*:*:*
EPSS
Процентиль: 49%
0.00262
Низкий
4.9 Medium
CVSS2
Дефекты
CWE-264
Связанные уязвимости
github
больше 3 лет назад
Citrix XenDesktop 7.x, 5.x, and 4.x, when pooled random desktop groups is enabled and ShutdownDesktopsAfterUse is disabled, allows local guest users to gain access to another user's desktop via unspecified vectors.
EPSS
Процентиль: 49%
0.00262
Низкий
4.9 Medium
CVSS2
Дефекты
CWE-264