CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2018-17448
https://notcve.org/view.php?id=CVE-2018-17448
An Incorrect Access Control issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4. Se ha descubierto un problema de control de acceso incorrecto en Citrix SD-WAN 10.1.0 y NetScaler SD-WAN en versiones 9.3.x anteriores a la 9.3.6 y versiones 10.0.x anteriores a la 10.0.4. • http://www.securityfocus.com/bid/105711 https://support.citrix.com/article/CTX236992 •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2018-17445
https://notcve.org/view.php?id=CVE-2018-17445
A Command Injection issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4. Se ha descubierto un problema de inyección de comandos en Citrix SD-WAN 10.1.0 y NetScaler SD-WAN en versiones 9.3.x anteriores a la 9.3.6 y versiones 10.0.x anteriores a la 10.0.4. • http://www.securityfocus.com/bid/105711 https://support.citrix.com/article/CTX236992 • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 3.5EPSS: 0%CPEs: 1EXPL: 0CVE-2018-16968 – Citrix StorageZones Controller Improper Access Restrictions / Traversal
https://notcve.org/view.php?id=CVE-2018-16968
Citrix ShareFile StorageZones Controller before 5.4.2 allows Directory Traversal. Citrix ShareFile StorageZones Controller en versiones anteriores a la 5.4.2 permite el salto de directorio. Citrix StorageZones Controller versions prior to 5.4.2 suffer from padding oracle, improper access restriction, and path traversal vulnerabilities. • http://www.securityfocus.com/bid/105377 https://support.citrix.com/article/CTX238022 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 0CVE-2018-16969 – Citrix StorageZones Controller Improper Access Restrictions / Traversal
https://notcve.org/view.php?id=CVE-2018-16969
Citrix ShareFile StorageZones Controller before 5.4.2 has Information Exposure Through an Error Message. Citrix ShareFile StorageZones Controller en versiones anteriores a la 5.4.2 tiene una exposición de información mediante un mensaje de error. Citrix StorageZones Controller versions prior to 5.4.2 suffer from padding oracle, improper access restriction, and path traversal vulnerabilities. • http://www.securityfocus.com/bid/105377 https://support.citrix.com/article/CTX238022 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 2%CPEs: 3EXPL: 0CVE-2018-14007
https://notcve.org/view.php?id=CVE-2018-14007
Citrix XenServer 7.1 and newer allows Directory Traversal. Citrix XenServer en versiones 7.1 y posteriores permite un salto de directorio. • http://www.securityfocus.com/bid/105110 http://xenbits.xen.org/xsa/advisory-271.html https://support.citrix.com/article/CTX236548 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •