Vulnerability Details CVE-2020-8200
Improper authentication in Citrix StoreFront Server < 1912.0.1000 allows an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 50.9%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 4.0
References
Products affected by CVE-2020-8200
-
cpe:2.3:a:citrix:storefront_server:-
-
cpe:2.3:a:citrix:storefront_server:1811
-
cpe:2.3:a:citrix:storefront_server:1903
-
cpe:2.3:a:citrix:storefront_server:1906
-
cpe:2.3:a:citrix:storefront_server:1909
-
cpe:2.3:a:citrix:storefront_server:1912
-
cpe:2.3:a:citrix:storefront_server:1912.0.1000
-
cpe:2.3:a:citrix:storefront_server:3.0
-
cpe:2.3:a:citrix:storefront_server:3.0.8000
-
cpe:2.3:a:citrix:storefront_server:3.0.8001
-
cpe:2.3:a:citrix:storefront_server:3.11
-
cpe:2.3:a:citrix:storefront_server:3.12
-
cpe:2.3:a:citrix:storefront_server:3.12.4000
-
cpe:2.3:a:citrix:storefront_server:3.12.5001
-
cpe:2.3:a:citrix:storefront_server:3.13
-
cpe:2.3:a:citrix:storefront_server:3.14
-
cpe:2.3:a:citrix:storefront_server:3.15
-
cpe:2.3:a:citrix:storefront_server:3.16
-
cpe:2.3:a:citrix:storefront_server:3.5
-
cpe:2.3:a:citrix:storefront_server:3.6
-
cpe:2.3:a:citrix:storefront_server:3.7
-
cpe:2.3:a:citrix:storefront_server:3.8
-
cpe:2.3:a:citrix:storefront_server:3.9