Vulnerability in Citrix Xendesktop
CVE-2013-6077
Citrix XenDesktop 7.0, when upgraded from XenDesktop 5.x, does not properly enforce policy rule permissions, which allows remote attackers to bypass intended restrictions.
EPSS: 0.017 (73.9th percentile) — read the EPSS interpretation.
Affected products
- Citrix Xendesktop — versions 7.0
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (x_refsource_CONFIRM, Vendor Advisory)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)