CVE-2015-2683

NONECVSS 0.0

0.0

Citrix Command Center before 5.1 Build 35.4 and 5.2 before Build 42.7 does not properly restrict access to the Advent Java Management Extensions (JMX) Servlet, which allows remote attackers to execute arbitrary code via unspecified vectors to servlets/Jmx_dynamic.

🔗 References (14)

cve@mitrehttp://packetstormsecurity.com/files/130930/Citrx-Command-Center-Advent-JMX-Servlet-Accessible.html
cve@mitrehttp://seclists.org/fulldisclosure/2015/Mar/127
cve@mitrehttp://support.citrix.com/article/CTX200584
cve@mitrehttp://www.securityfocus.com/archive/1/534933/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/73313
cve@mitrehttp://www.securitytracker.com/id/1031993
cve@mitrehttps://www.securify.nl/advisory/SFY20140804/advent_jmx_servlet_of_citrx_command_center_is_accessible_to_unauthenticated_users.html
af854a3a-2127-422b-91ae-364da2661108http://packetstormsecurity.com/files/130930/Citrx-Command-Center-Advent-JMX-Servlet-Accessible.html
af854a3a-2127-422b-91ae-364da2661108http://seclists.org/fulldisclosure/2015/Mar/127
af854a3a-2127-422b-91ae-364da2661108http://support.citrix.com/article/CTX200584
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/534933/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/73313
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id/1031993
af854a3a-2127-422b-91ae-364da2661108https://www.securify.nl/advisory/SFY20140804/advent_jmx_servlet_of_citrx_command_center_is_accessible_to_unauthenticated_users.html

Is Your Infrastructure Affected by CVE-2015-2683?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2015-2683

📅 Published

🔄 Last Modified

🔗 References (14)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2015-2683?