Vulnerability Details CVE-2013-2757
Citrix CloudPlatform (formerly Citrix CloudStack) 3.0.x before 3.0.6 Patch C does not properly restrict access to VNC ports on the management network, which allows remote attackers to have unspecified impact via unknown vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.019
EPSS Ranking 82.5%
CVSS Severity
CVSS v2 Score 7.5
References
- http://osvdb.org/92746
- http://secunia.com/advisories/53204
- http://support.citrix.com/article/CTX135815
- http://www.securityfocus.com/bid/59467
- http://www.securitytracker.com/id/1028473
- https://exchange.xforce.ibmcloud.com/vulnerabilities/83783
- http://osvdb.org/92746
- http://secunia.com/advisories/53204
- http://support.citrix.com/article/CTX135815
- http://www.securityfocus.com/bid/59467
- http://www.securitytracker.com/id/1028473
- https://exchange.xforce.ibmcloud.com/vulnerabilities/83783
Products affected by CVE-2013-2757
-
cpe:2.3:a:citrix:cloudplatform:3.0
-
cpe:2.3:a:citrix:cloudplatform:3.0.3
-
cpe:2.3:a:citrix:cloudplatform:3.0.4
-
cpe:2.3:a:citrix:cloudplatform:3.0.5
-
cpe:2.3:a:citrix:cloudplatform:3.0.6