02 Avr 2015
CVE-2015-2838
Vulnerability Details : CVE-2015-2838 Cross-site request forgery (CSRF) vulnerability in Nitro API in Citrix NetScaler before 10.5 build 52.3nc allows remote attackers to hijack the authentication of administrators for requests that execute arbitrary commands as nsroot via shell metacharacters in the file_name JSON member in params/xen_hotfix/0 to nitro/v1/config/xen_hotfix. Publish Date : 2015-04-03 Last Update Date : 2015-04-03 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2015-2838
- Number Of Affected Versions By Product
- References For CVE-2015-2838
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2015-2838There are not any metasploit modules related to this vulnerability (Please visit www.metasploit.com for more information) |