Cross-Site Scripting Vulnerability in Citrix StoreFront

CVE-2023-5914

What is CVE-2023-5914?

The vulnerability identified as CVE-2023-5914 is a Cross-Site Scripting (XSS) issue in the Citrix StoreFront product. This vulnerability can be exploited without authentication and is caused by an error message during an XML parsing procedure in the Single Sign-On (SSO) flow. Additionally, another vulnerability, CVE-2023-6184, has been discovered in Citrix Session Recording, which allows for Remote Code Execution (RCE) caused by insecure .NET remoting configurations.

The exploitation of these vulnerabilities can lead to unauthorized access to systems, potential data breaches, and the potential spread of malware. These vulnerabilities have been exploited in the wild and require immediate attention and patching. Vulnerable systems are urged to upgrade to the patched version to mitigate the risk. This highlights the importance of timely patching and security vigilance in protecting against advanced cyber threats.

News Articles

Pentest-Tools.com

CVE-2023-5914

Citrix StoreFront - Cross-Site Scripting (CVE-2023-5914)

Reflected Cross-Site Scripting issue which is exploitable without authentication.

Assetnote

CVE-2023-5914CVE-2023-6184

Continuing the Citrix Saga: CVE-2023-5914 & CVE-2023-6184

While most of the attention for vulnerabilities within Citrix has been on their NetScaler VPN product, we noticed that there were several other products offered by Citrix that require an on-premise deployment of a web application, that is sometimes internet facing. This piqued our interest and led u...

Kraft Kennedy

CVE-2023-5914

Citrix StoreFront Security Bulletin for CVE-2023-5914

A vulnerability has been discovered in Citrix StoreFront, which, if exploited, may result in a Cross-site scripting (XSS) attack.

References