CVE-2014-2690
Published Apr 15, 2014
Last updated 11 years ago
Overview
- Description
- Citrix VDI-in-a-Box 5.3.x before 5.3.6 and 5.4.x before 5.4.3 allows local users to obtain administrator credentials by reading the log.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 2.1
- Impact score
- 2.9
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-264
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:citrix:vdi-in-a-box:5.3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "54CA23BD-65AD-4AB6-8ADF-E7BA0C29F2C5"
},
{
"criteria": "cpe:2.3:a:citrix:vdi-in-a-box:5.3.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D292B99B-48B5-4687-8750-85C6C1C1A9FE"
},
{
"criteria": "cpe:2.3:a:citrix:vdi-in-a-box:5.3.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B8C4F766-77E9-4E07-BFBA-083DA66964AF"
},
{
"criteria": "cpe:2.3:a:citrix:vdi-in-a-box:5.3.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0AB69466-7A30-4A16-BB82-D31A44F524BC"
},
{
"criteria": "cpe:2.3:a:citrix:vdi-in-a-box:5.3.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0BE541CA-807C-4EF0-8070-CE306F05F270"
},
{
"criteria": "cpe:2.3:a:citrix:vdi-in-a-box:5.3.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D5FE45D6-61F5-44E7-828C-487C1D8D3E24"
},
{
"criteria": "cpe:2.3:a:citrix:vdi-in-a-box:5.4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B8EE0323-ECA8-4776-96B6-AAE962DE0176"
},
{
"criteria": "cpe:2.3:a:citrix:vdi-in-a-box:5.4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "78C7A454-E282-4970-9DB4-65437C74E7FD"
},
{
"criteria": "cpe:2.3:a:citrix:vdi-in-a-box:5.4.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "25DAABD0-DDB8-4AB5-9553-E3BC38741FA1"
}
],
"operator": "OR"
}
]
}
]