Applicable Products (XenMobile 10.7 & XenMobile 10.8)
Affecting XenMobile Server 10.7 and 10.8:
- CVE-2018-10653 (High): XML External Entity (XXE) Processing Vulnerability in Citrix XenMobile Server
- CVE-2018-10650 (Medium): Insufficient Path Validation Vulnerability in Citrix XenMobile Server
- CVE-2018-10654 (Medium): Hazelcast Library Java Deserialization Vulnerability in Citrix XenMobile Server
- CVE-2018-10648 (Low): Unauthenticated File Upload Vulnerabilities in Citrix XenMobile Server
- CVE-2018-10651 (Low): Open Redirect Vulnerabilities in Citrix XenMobile Server
Affecting XenMobile Server 10.7: ………..
Mitigating Factors: …………………………..
Should you have interest of this topic, refer below url for reference.