CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-6830

The disconnection feature in Citrix Web Interface 5.0 and 5.0.1 for Java Application Servers does not properly terminate a user's web interface session, which allows attackers with access to the same browser instance to gain access to the user's Web Interface session. NOTE: the attacker must also have valid credentials to the Web Interface.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 70.9%

CVSS Severity

CVSS v2 Score 4.0

References

http://osvdb.org/49387
http://secunia.com/advisories/32444
http://support.citrix.com/article/CTX118768
http://www.securityfocus.com/bid/31943
http://www.securitytracker.com/id?1021110
http://www.vupen.com/english/advisories/2008/2946
https://exchange.xforce.ibmcloud.com/vulnerabilities/46135
http://osvdb.org/49387
http://secunia.com/advisories/32444
http://support.citrix.com/article/CTX118768
http://www.securityfocus.com/bid/31943
http://www.securitytracker.com/id?1021110
http://www.vupen.com/english/advisories/2008/2946
https://exchange.xforce.ibmcloud.com/vulnerabilities/46135

Products affected by CVE-2008-6830

Citrix » Web Interface » Version: 5.0

cpe:2.3:a:citrix:web_interface:5.0
Citrix » Web Interface » Version: 5.0.1

cpe:2.3:a:citrix:web_interface:5.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-6830

Products

Pricing

Contact Us