Lucene search

K

MitreCVELIST:CVE-2015-2683

HistoryMar 26, 2015 - 2:00 p.m.

CVE-2015-2683

2015-03-2614:00:00

mitre

www.cve.org

7.8 High

AI Score

Confidence

Low

0.077 Low

EPSS

Percentile

94.2%

Citrix Command Center before 5.1 Build 35.4 and 5.2 before Build 42.7 does not properly restrict access to the Advent Java Management Extensions (JMX) Servlet, which allows remote attackers to execute arbitrary code via unspecified vectors to servlets/Jmx_dynamic.

References

packetstormsecurity.com/files/130930/Citrx-Command-Center-Advent-JMX-Servlet-Accessible.html

seclists.org/fulldisclosure/2015/Mar/127

support.citrix.com/article/CTX200584

www.securityfocus.com/archive/1/534933/100/0/threaded

www.securityfocus.com/bid/73313

www.securitytracker.com/id/1031993

www.securify.nl/advisory/SFY20140804/advent_jmx_servlet_of_citrx_command_center_is_accessible_to_unauthenticated_users.html

7.8 High

AI Score

Confidence

Low

0.077 Low

EPSS

Percentile

94.2%

Related for CVELIST:CVE-2015-2683

prion1 nvd1 cve1 kaspersky1