Citrix Storefront vulnerabilities

CVE-2024-6148 [MEDIUM] CWE-276 Citrix Workspace app for HTML5 Security Bulletin CVE-2024-6148 and CVE-2024-6149 Citrix Workspace app for HTML5 Security Bulletin CVE-2024-6148 and CVE-2024-6149 of Problem Two vulnerabilities have been discovered that impact the Citrix Workspace app for HTML5. Refer to below for further details: CVE References: CVE-2024-6148, CVE-2024-6149 Affected Products: Citrix Workspace app, StoreFront, XenServer, storefront, workspace Severity: Medium CVSS Score: 5.3 Reme

CVE-2022-27503 [MEDIUM] CWE-79 CVE-2022-27503: Cross-site Scripting (XSS) vulnerability in Citrix StoreFront affects version 1912 before CU5 and ve Cross-site Scripting (XSS) vulnerability in Citrix StoreFront affects version 1912 before CU5 and version 3.12 before CU9

CVE-2020-8200 [MEDIUM] Citrix StoreFront Security Update - Security Bulletin Citrix StoreFront Security Update - Security Bulletin A high severity issue has been discovered in Citrix StoreFront that, if exploited, would allow an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server. This issue has the following identifier: CVE-2020-8200 The issue affects the following supported Current Release (CR) vers

CVE-2019-13608 [HIGH] CVE-2019-13608 - XML External Entity (XXE) Processing Vulnerability in Citrix StoreFront Server CVE-2019-13608 - XML External Entity (XXE) Processing Vulnerability in Citrix StoreFront Server of Problem An XML External Entity (XXE) processing vulnerability has been identified in Citrix StoreFront Server that could allow an unauthenticated attacker to retrieve potentially sensitive information from the server. This vulnerability has been assigned the following CVE number: •