CVE-2013-2757

Citrix CloudPlatform (formerly Citrix CloudStack) 3.0.x before 3.0.6 Patch C does not properly restrict access to VNC ports on the management network, which allows remote attackers to have unspecified impact via unknown vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:P
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 82%
VendorProductVersion
citrixcloudplatform
3.0
citrixcloudplatform
3.0.3
citrixcloudplatform
3.0.4
citrixcloudplatform
3.0.5
citrixcloudplatform
3.0.6
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/92746
http://secunia.com/advisories/53204
http://support.citrix.com/article/CTX135815
http://www.securityfocus.com/bid/59467
http://www.securitytracker.com/id/1028473
https://exchange.xforce.ibmcloud.com/vulnerabilities/83783
http://osvdb.org/92746
http://secunia.com/advisories/53204
http://support.citrix.com/article/CTX135815
http://www.securityfocus.com/bid/59467
http://www.securitytracker.com/id/1028473
https://exchange.xforce.ibmcloud.com/vulnerabilities/83783