CVE-2020-8211: SQL Injection
First published: Mon Aug 17 2020(Updated: )
Improper input validation in Citrix XenMobile Server 10.12 before RP3, Citrix XenMobile Server 10.11 before RP6, Citrix XenMobile Server 10.10 RP6 and Citrix XenMobile Server before 10.9 RP5 allows SQL Injection.
Credit: support@hackerone.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Citrix XenMobile Server | <=10.8.0 | |
| Citrix XenMobile Server | =10.9.0 | |
| Citrix XenMobile Server | =10.9.0-rolling_patch1 | |
| Citrix XenMobile Server | =10.9.0-rolling_patch2 | |
| Citrix XenMobile Server | =10.9.0-rolling_patch3 | |
| Citrix XenMobile Server | =10.9.0-rolling_patch4 | |
| Citrix XenMobile Server | =10.10.0 | |
| Citrix XenMobile Server | =10.10.0-rolling_patch1 | |
| Citrix XenMobile Server | =10.10.0-rolling_patch2 | |
| Citrix XenMobile Server | =10.10.0-rolling_patch3 | |
| Citrix XenMobile Server | =10.10.0-rolling_patch4 | |
| Citrix XenMobile Server | =10.10.0-rolling_patch5 | |
| Citrix XenMobile Server | =10.11.0 | |
| Citrix XenMobile Server | =10.11.0-rolling_patch1 | |
| Citrix XenMobile Server | =10.11.0-rolling_patch2 | |
| Citrix XenMobile Server | =10.11.0-rolling_patch3 | |
| Citrix XenMobile Server | =10.11.0-rolling_patch4 | |
| Citrix XenMobile Server | =10.11.0-rolling_patch5 | |
| Citrix XenMobile Server | =10.12.0 | |
| Citrix XenMobile Server | =10.12.0-rolling_patch1 | |
| Citrix XenMobile Server | =10.12.0-rolling_patch2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2020-8211?
CVE-2020-8211 is a vulnerability in Citrix XenMobile Server that allows SQL injection.
How severe is CVE-2020-8211?
CVE-2020-8211 has a severity rating of 9.8, which is considered critical.
Which versions of Citrix XenMobile Server are affected by CVE-2020-8211?
CVE-2020-8211 affects Citrix XenMobile Server versions 10.8.0 to 10.12.0.
How can I fix CVE-2020-8211?
To fix CVE-2020-8211, it is recommended to apply the necessary patches provided by Citrix.
Where can I find more information about CVE-2020-8211?
You can find more information about CVE-2020-8211 on the Citrix support website using the following link: https://support.citrix.com/article/CTX277457
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/citrix
- canonical/citrix xenmobile server
- version/citrix xenmobile server/10.8.0
- version/citrix xenmobile server/10.9.0
- version/citrix xenmobile server/10.9.0-rolling_patch1
- version/citrix xenmobile server/10.9.0-rolling_patch2
- version/citrix xenmobile server/10.9.0-rolling_patch3
- version/citrix xenmobile server/10.9.0-rolling_patch4
- version/citrix xenmobile server/10.10.0
- version/citrix xenmobile server/10.10.0-rolling_patch1
- version/citrix xenmobile server/10.10.0-rolling_patch2
- version/citrix xenmobile server/10.10.0-rolling_patch3
- version/citrix xenmobile server/10.10.0-rolling_patch4
- version/citrix xenmobile server/10.10.0-rolling_patch5
- version/citrix xenmobile server/10.11.0
- version/citrix xenmobile server/10.11.0-rolling_patch1
- version/citrix xenmobile server/10.11.0-rolling_patch2
- version/citrix xenmobile server/10.11.0-rolling_patch3
- version/citrix xenmobile server/10.11.0-rolling_patch4
- version/citrix xenmobile server/10.11.0-rolling_patch5
- version/citrix xenmobile server/10.12.0
- version/citrix xenmobile server/10.12.0-rolling_patch1
- version/citrix xenmobile server/10.12.0-rolling_patch2