CVE-2017-6316

Citrix Multiple Products Remote Code Execution Vulnerability

Description

A vulnerability has been identified in the management interface of Citrix NetScaler SD-WAN Enterprise and Standard Edition and Citrix CloudBridge Virtual WAN Edition that could result in an unauthenticated, remote attacker being able to execute arbitrary code as a root user. This vulnerability also affects XenMobile Server.

Severity: CRITICAL

CVSS Score: 9.8

Vendor: Citrix

Product: NetScaler SD-WAN Enterprise, CloudBridge Virtual WAN, and XenMobile Server