CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2013-6939
https://notcve.org/view.php?id=CVE-2013-6939
Unspecified vulnerability in Citrix NetScaler Application Delivery Controller (ADC) 9.3.x before 9.3-64.4, 10.0 before 10.0-77.5, and 10.1 before 10.1-118.7 allows attackers to cause a denial of service via unknown vectors, related to "RADIUS authentication." Vulnerabilidad no especificada en Citrix NetScaler Application Delivery Controller (ADC) 9.3.x anterior a 9.3-64.4, 10.0 anterior a 10.0-77.5 y 10.1 anterior a 10.1-118.7 permite a atacantes causar una denegación de servicio a través de vectores desconocidos, relacionado con "RADIUS authentication." • http://support.citrix.com/article/CTX139049 •
CVSS: 10.0EPSS: 0%CPEs: 4EXPL: 0CVE-2013-6941
https://notcve.org/view.php?id=CVE-2013-6941
Unspecified vulnerability in Citrix NetScaler Application Delivery Controller (ADC) 9.3.x before 9.3-64.4, 10.0 before 10.0-77.5, and 10.1 before 10.1-118.7 allows users to "breakout" of the shell via unknown vectors. Vulnerabilidad no especificada en Citrix NetScaler Application Delivery Controller (ADC) 9.3.x anterior a 9.3-64.4, 10.0 anterior a 10.0-77.5 y 10.1 anterior a 10.1-118.7 permite a usuarios "liberarse" del shell a través de vectores desconocidos. • http://support.citrix.com/article/CTX139049 •
CVSS: 5.0EPSS: 0%CPEs: 4EXPL: 0CVE-2013-6943
https://notcve.org/view.php?id=CVE-2013-6943
Citrix NetScaler Application Delivery Controller (ADC) 9.3.x before 9.3-64.4, 10.0 before 10.0-77.5, and 10.1 before 10.1-118.7 allows remote attackers to conduct an LDAP injection attack via vectors related to SSH and Web management usernames. Citrix NetScaler Application Delivery Controller (ADC) 9.3.x anterior a 9.3-64.4, 10.0 anterior a 10.0-77.5 y 10.1 anterior a 10.1-118.7 permite a atacantes remotos realizar un ataque de inyección LDAP a través de vectores relacionados con SSH y nombres de usuarios de gestión Web. • http://support.citrix.com/article/CTX139049 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 4.3EPSS: 0%CPEs: 4EXPL: 0CVE-2013-6944
https://notcve.org/view.php?id=CVE-2013-6944
Cross-site scripting (XSS) vulnerability in the user interface in the AAA TM vServer in Citrix NetScaler Application Delivery Controller (ADC) 9.3.x before 9.3-64.4, 10.0 before 10.0-77.5, and 10.1 before 10.1-118.7 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en la interfaz del usuario en el AAA TM vServer en Citrix NetScaler Application Delivery Controller (ADC) 9.3.x anterior a 9.3-64.4, 10.0 anterior a 10.0-77.5 y 10.1 anterior a 10.1-118.7 permite a atacantes remotos inyectar script Web o HTML arbitrarios a través de vectores no especificados. • http://support.citrix.com/article/CTX139049 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 5.8EPSS: 0%CPEs: 2EXPL: 0CVE-2014-1910
https://notcve.org/view.php?id=CVE-2014-1910
Citrix ShareFile Mobile and ShareFile Mobile for Tablets before 2.4.4 for Android do not verify X.509 certificates from SSL servers, which allow man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate. Citrix ShareFile Mobile y ShareFile Mobile para Tablets anterior a 2.4.4 para Android no verifican los certificados X.509 de servidores SSL, lo que permite a atacantes man-in-the-middle falsificar servidores y obtener información sensible a través de un certificado manipulado. • http://secunia.com/advisories/57020 http://support.citrix.com/article/CTX140303 http://www.securitytracker.com/id/1029791 • CWE-310: Cryptographic Issues •