Citrix Storefront Server vulnerabilities
3 known vulnerabilities affecting citrix/storefront_server.
Total CVEs
3
CISA KEV
1
actively exploited
Public exploits
1
Exploited in wild
1
Severity breakdown
HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-27503MEDIUMCVSS 6.1≥ 3.12, < 3.12.9000≥ 1912, < 1912.0.50002022-04-13
CVE-2022-27503 [MEDIUM] CWE-79 CVE-2022-27503: Cross-site Scripting (XSS) vulnerability in Citrix StoreFront affects version 1912 before CU5 and ve
Cross-site Scripting (XSS) vulnerability in Citrix StoreFront affects version 1912 before CU5 and version 3.12 before CU9
nvd
CVE-2020-8200MEDIUMCVSS 6.5fixed in 2006≥ 3.0, < 3.0.8001+2 more2020-09-18
CVE-2020-8200 [MEDIUM] CWE-287 CVE-2020-8200: Improper authentication in Citrix StoreFront Server < 1912.0.1000 allows an attacker who is authenti
Improper authentication in Citrix StoreFront Server < 1912.0.1000 allows an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server.
nvd
CVE-2019-13608HIGHCVSS 7.5KEVPoC≥ 1811, < 1903fixed in 3.12.4000+1 more2019-08-29
CVE-2019-13608 [HIGH] CWE-611 CVE-2019-13608: Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 (3.12.4000), and 7.6 LTSR before CU8 (3.0
Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 (3.12.4000), and 7.6 LTSR before CU8 (3.0.8000) allows XXE attacks.
nvd