Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveCitrixCVE-2023-5914
HistoryJan 17, 2024 - 9:15 p.m.

CVE-2023-5914

2024-01-1721:15:11
CWE-79
Citrix
web.nvd.nist.gov
112
cve-2023-5914
xss
nvd
security
vulnerability

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

43.5%

JSON

Cross-site scripting (XSS)

Affected configurations

Nvd
Node
cloudcitrix_storefrontRange<1912ltsr
OR
cloudcitrix_storefrontRange<2308.1
OR
cloudcitrix_storefrontMatch1912-ltsr
VendorProductVersionCPE
cloudcitrix_storefront*cpe:2.3:a:cloud:citrix_storefront:*:*:*:*:ltsr:*:*:*
cloudcitrix_storefront*cpe:2.3:a:cloud:citrix_storefront:*:*:*:*:*:*:*:*
cloudcitrix_storefront1912cpe:2.3:a:cloud:citrix_storefront:1912:-:*:*:ltsr:*:*:*

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "Citrix StoreFront",
    "vendor": "Cloud Software Group",
    "versions": [
      {
        "lessThan": "1",
        "status": "affected",
        "version": "2308 Current Release",
        "versionType": "patch"
      },
      {
        "lessThan": "0",
        "status": "affected",
        "version": "2311 Current Release",
        "versionType": "patch"
      },
      {
        "lessThan": "CU8 hotfix 3.22.8001.2",
        "status": "affected",
        "version": "1912 LTSR",
        "versionType": "patch"
      },
      {
        "lessThan": "CU4 Update 1",
        "status": "affected",
        "version": "2203 LTSR ",
        "versionType": "patch"
      }
    ]
  }
]

Related

citrix 1
prion 1
cvelist 1
nvd 1
nuclei 1
citrix
citrix
Citrix StoreFront Security Bulletin for CVE-2023-5914
2024-01-16 13:08:20
prion
prion
Cross site scripting
2024-01-17 21:15:00
cvelist
cvelist
CVE-2023-5914
2024-01-17 20:19:49
nvd
nvd
CVE-2023-5914
2024-01-17 21:15:11
nuclei
nuclei
Citrix StoreFront - Cross-Site Scripting
2024-03-13 15:23:09

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

43.5%

JSON
Related for CVE-2023-5914
citrix1prion1cvelist1nvd1nuclei1