7.5

CVE-2009-2453

EPSS 0.73%
Published 14.07.2009 14:30:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

Citrix XenApp (formerly Presentation Server) 4.5 Hotfix Rollup Pack 3 does not apply an access policy when it is defined with the Access Gateway Advanced Edition filters, which allows attackers to bypass intended access restrictions via unknown vectors.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Citrix ≫ Presentation Server Version4.5 Update- Editionse

Citrix ≫ Presentation Server Version4.5 Update- Editionwindows_server_2003

Citrix ≫ Presentation Server Version4.5 Update- Editionwindows_server_2003_x64

Citrix ≫ Presentation Server Version4.5 Updatefp1

Citrix ≫ Xenapp Version4.5 Updatefp3

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.73%	0.703

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://osvdb.org/53900

http://secunia.com/advisories/34865

Vendor Advisory

http://support.citrix.com/article/CTX118792

Patch

Vendor Advisory

http://www.securityfocus.com/bid/34691

Patch

http://www.securitytracker.com/id?1022114

Patch

http://www.vupen.com/english/advisories/2009/1154

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2009-2453

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2009-2453

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2009-2453

EUVD