Authentication Bypass in Citrix VDI-In-A-Box Software
CVE-2014-3780

Currently unrated

Key Information:

Vendor
Citrix
Vendor
CVE Published:
30 May 2014

Summary

A vulnerability in Citrix VDI-In-A-Box 5.3.x and 5.4.x allows unauthorized remote attackers to bypass authentication mechanisms through unspecified vectors related to a Java servlet. This flaw potentially exposes sensitive information and allows malicious actors to access restricted areas of the application.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.