Authenticated Command Injection Vulnerability in Citrix XenMobile Server through 10.12 RP9

Authenticated Command Injection Vulnerability in Citrix XenMobile Server through 10.12 RP9

CVE-2021-44520 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

In Citrix XenMobile Server through 10.12 RP9, there is an Authenticated Command Injection vulnerability, leading to remote code execution with root privileges.

Learn more about our Cis Benchmark Audit For Server Software.