CVE-2018-14007

CWE-22 โ€” Path Traversal4 documents4 sources
Severity
9.8CRITICAL
EPSS
38.0%
top 2.79%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Citrix Xenserver
Timeline
PublishedAug 15
Latest updateMay 14

Description

Citrix XenServer 7.1 and newer allows Directory Traversal.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

โ–ถNVDcitrix/xenserver7.1, 7.4, 7.5+2

๐Ÿ”ดVulnerability Details

2
GHSA
GHSA-mqqx-c4gr-338h: Citrix XenServer 7โ†—2022-05-14
โ–ถ
CVEList
CVE-2018-14007: Citrix XenServer 7โ†—2018-08-15
โ–ถ

๐Ÿ“‹Vendor Advisories

1
Citrix
CVE-2018-14007: Citrix XenServer 7.1 and newer allows Directory Traversal.โ†—2018-08-15
โ–ถ