← Back

CVE-2024-6150

nvd nist
Published: Jul 10, 2024Modified: Jul 25, 2025

JSON object

Loading...
4.8
Vector
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Show more
CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:XShow less
Source: secure@citrix.com (Secondary)

Description

A non-admin user can cause short-term disruption in Target VM availability in Citrix Provisioning

Affected (13)

Products: Citrix: Provisioning
Citrix
1 product
Provisioning
Configuration A
13 vulnerable
Vulnerable SoftwareAffected Versions
Citrix
Provisioning
Up to 2311
Provisioning
Version 1912 cu1
Provisioning
Version 1912 cu2
Provisioning
Version 1912 cu3
Provisioning
Version 1912 cu4
Provisioning
Version 1912 cu5
Provisioning
Version 1912 cu6
Provisioning
Version 1912 cu7
Provisioning
Version 1912 cu8
Provisioning
Version 2203 cu1
Provisioning
Version 2203 cu2
Provisioning
Version 2203 cu3
Provisioning
Version 2203 cu4

Related CWEs

CWE-863
Incorrect Authorization
The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check. This allows attackers to bypass intended access restrictions.

References (2)

Source: secure@citrix.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.