CVE-2016-9678

Use-after-free vulnerability in Citrix Provisioning Services before 7.12 allows attackers to execute arbitrary code via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 86%
VendorProductVersion
citrixprovisioning_services
7.0
citrixprovisioning_services
7.1
citrixprovisioning_services
7.6
citrixprovisioning_services
7.7
citrixprovisioning_services
7.8
citrixprovisioning_services
7.9
citrixprovisioning_services
7.11
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/95620
http://www.securitytracker.com/id/1037625
https://support.citrix.com/article/CTX219580
http://www.securityfocus.com/bid/95620
http://www.securitytracker.com/id/1037625
https://support.citrix.com/article/CTX219580