CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-16969 – Citrix StorageZones Controller Improper Access Restrictions / Traversal
https://notcve.org/view.php?id=CVE-2018-16969
Citrix ShareFile StorageZones Controller before 5.4.2 has Information Exposure Through an Error Message. Citrix ShareFile StorageZones Controller en versiones anteriores a la 5.4.2 tiene una exposición de información mediante un mensaje de error. Citrix StorageZones Controller versions prior to 5.4.2 suffer from padding oracle, improper access restriction, and path traversal vulnerabilities. • http://www.securityfocus.com/bid/105377 https://support.citrix.com/article/CTX238022 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.8EPSS: 0%CPEs: 2EXPL: 0CVE-2014-1910
https://notcve.org/view.php?id=CVE-2014-1910
Citrix ShareFile Mobile and ShareFile Mobile for Tablets before 2.4.4 for Android do not verify X.509 certificates from SSL servers, which allow man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Citrix ShareFile Mobile y ShareFile Mobile para Tablets anterior a 2.4.4 para Android no verifican los certificados X.509 de servidores SSL, lo que permite a atacantes man-in-the-middle falsificar servidores y obtener información sensible a través de un certificado manipulado. • http://secunia.com/advisories/57020 http://support.citrix.com/article/CTX140303 http://www.securitytracker.com/id/1029791 • CWE-310: Cryptographic Issues •