Intrusion Prevention

Citrix.XenMobile.Server.XXE

Description

This indicates an attack attempt to exploit a External Entity Injection Vulnerability in Citrix XenMobile Server.
A remote attacker could exploit this vulnerability by sending malicious XML data to the target server. Successful exploitation could result in the disclosure of file content on the target machine.

Affected Products

Citrix XenMobile Server 10.8 before RP2
Citrix XenMobile Server 10.7 before RP3

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
https://support.citrix.com/article/CTX234879

CVE References

CVE-2018-10653