Exposures › CVE-2019-13608

CVE-2019-13608

Severity
critical · on CISA KEV actively exploited
Source
CISA-KEV · kev
Published
2021-11-03
Reference
⌖ exploited in the wild shame 80/100 ransomwareexploited-in-wild

Citrix StoreFront Server contains an XML External Entity (XXE) processing vulnerability that may allow an unauthenticated attacker to retrieve potentially sensitive information.

Players implicated

Description

Citrix StoreFront Server contains an XML External Entity (XXE) processing vulnerability that may allow an unauthenticated attacker to retrieve potentially sensitive information.

Affected FedRAMP products 1 in the catalog

ProductProviderStatusMatch
Citrix for Government Citrix Authorized vendor-exact · 0.90