Citrix Provisioning Services vulnerabilities

6 known vulnerabilities affecting citrix/provisioning_services.

Total CVEs
6
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL3HIGH2MEDIUM1

Vulnerabilities

Page 1 of 1
CVE-2016-9678CRITICALCVSS 9.8v7.0v7.1+5 more2017-01-18
CVE-2016-9678 [CRITICAL] CWE-416 CVE-2016-9678: Use-after-free vulnerability in Citrix Provisioning Services before 7.12 allows attackers to execute Use-after-free vulnerability in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2016-9679CRITICALCVSS 9.8v7.0v7.1+5 more2017-01-18
CVE-2016-9679 [CRITICAL] CWE-119 CVE-2016-9679: Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code by overwriting a Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code by overwriting a function pointer.
nvd
CVE-2016-9676CRITICALCVSS 9.8v7.0v7.1+5 more2017-01-18
CVE-2016-9676 [CRITICAL] CWE-119 CVE-2016-9676: Buffer overflow in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary co Buffer overflow in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code via unspecified vectors.
nvd
CVE-2016-9680HIGHCVSS 7.5v7.0v7.1+5 more2017-01-18
CVE-2016-9680 [HIGH] CWE-200 CVE-2016-9680: Citrix Provisioning Services before 7.12 allows attackers to obtain sensitive information from kerne Citrix Provisioning Services before 7.12 allows attackers to obtain sensitive information from kernel memory via unspecified vectors.
nvd
CVE-2016-9677MEDIUMCVSS 5.3v7.0v7.1+5 more2017-01-18
CVE-2016-9677 [MEDIUM] CWE-200 CVE-2016-9677: Citrix Provisioning Services before 7.12 allows attackers to obtain sensitive kernel address informa Citrix Provisioning Services before 7.12 allows attackers to obtain sensitive kernel address information via unspecified vectors.
nvd
CVE-2012-4068HIGHCVSS 7.5v5.0v5.1+3 more2012-07-26
CVE-2012-4068 [HIGH] CWE-119 CVE-2012-4068: Heap-based buffer overflow in the SoapServer service in Citrix Provisioning Services 5.0, 5.1, 5.6, Heap-based buffer overflow in the SoapServer service in Citrix Provisioning Services 5.0, 5.1, 5.6, 5.6 SP1, 6.0, and 6.1 allows remote attackers to execute arbitrary code via a crafted string associated with date and time data.
nvd
Citrix Provisioning Services vulnerabilities | cvebase