Improper Authentication in Citrix StoreFront Server Affects User Security
CVE-2020-8200

6.5MEDIUM

Key Information:

Vendor: Citrix
Status: Citrix Storefront
Vendor: CVE Published:; 18 September 2020

What is CVE-2020-8200?

The Citrix StoreFront Server prior to version 1912.0.1000 contains a vulnerability related to improper authentication. An attacker with access to the same Microsoft Active Directory domain as the Citrix StoreFront server can exploit this flaw to read arbitrary files stored on the server. This raises significant security concerns as unauthorized file access could lead to data breaches and exposure of sensitive information.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

Citrix StoreFront Citrix StoreFront 1912 CU1 (1912.0.1000), Citrix StoreFront 3.12 for 7.15 LTSR CU5 Hotfix (3.12.5001) and Citrix StoreFront 3.0 for 7.6 LTSR CU8 Hotfix (3.0.8001)

References

https://support.citrix.com/article/CTX277455

x_refsource_MISC

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Sep 18, 2020
Vulnerability Reserved
Jan 28, 2020

JSON

Citrix