Lucene search
HistoryMay 30, 2014 - 2:55 p.m.
CVE-2014-3780
cve-2014-3780
citrix
vdi
authentication bypass
java servlet
vulnerability
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
82.7%
Unspecified vulnerability in Citrix VDI-In-A-Box 5.3.x before 5.3.8 and 5.4.x before 5.4.4 allows remote attackers to bypass authentication via unspecified vectors, related to a Java servlet.
Affected configurations
Node
citrixvdi-in-a-boxMatch5.3.0
ORcitrixvdi-in-a-boxMatch5.3.1
ORcitrixvdi-in-a-boxMatch5.3.2
ORcitrixvdi-in-a-boxMatch5.3.3
ORcitrixvdi-in-a-boxMatch5.3.4
ORcitrixvdi-in-a-boxMatch5.3.5
ORcitrixvdi-in-a-boxMatch5.3.6
ORcitrixvdi-in-a-boxMatch5.3.7
ORcitrixvdi-in-a-boxMatch5.4.0
ORcitrixvdi-in-a-boxMatch5.4.1
ORcitrixvdi-in-a-boxMatch5.4.2
ORcitrixvdi-in-a-boxMatch5.4.3
Related
prion
prion
Authentication flaw
2014-05-30 14:55:00
cvelist
cvelist
CVE-2014-3780
2014-05-30 14:00:00
nvd
nvd
CVE-2014-3780
2014-05-30 14:55:09
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.2 High
AI Score
Confidence
Low
0.009 Low
EPSS
Percentile
82.7%
Related for CVE-2014-3780