CVE-2023-6184 | SynScan

Vulnerability Database

290,301

Total vulnerabilities in the database

CVE-2023-6184

Cross SiteScripting vulnerability in Citrix Session Recording allows attacker to perform Cross Site Scripting

Published: Jan 18, 2024
Updated: Jan 25, 2024
CVE: CVE-2023-6184
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.2
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-79

OWASP TOP 10:

A7 - Cross-Site Scripting (XSS)

Affected Software
References

Software	From	Fixed in
citrix / virtual_apps_and_desktops	1912	1912.x
citrix / virtual_apps_and_desktops	1912-cu3	1912-cu3.x
citrix / virtual_apps_and_desktops	2203	2203.x
citrix / virtual_apps_and_desktops	1912-cu1	1912-cu1.x
citrix / virtual_apps_and_desktops	1912-cu2	1912-cu2.x
citrix / virtual_apps_and_desktops	1912-cu4	1912-cu4.x
citrix / virtual_apps_and_desktops	1912-cu5	1912-cu5.x
citrix / virtual_apps_and_desktops	2203-cu1	2203-cu1.x
citrix / virtual_apps_and_desktops	2203-cu2	2203-cu2.x
citrix / virtual_apps_and_desktops	1912-cu6	1912-cu6.x
citrix / virtual_apps_and_desktops	-	2311.x
citrix / virtual_apps_and_desktops	2203-cu3	2203-cu3.x
citrix / virtual_apps_and_desktops	1912-cu7	1912-cu7.x

https://support.citrix.com/article/CTX583930/citrix-session-recording-security-bulletin-for-cve20236184