Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2021-22914

EPSS 0.32% · P55
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-22914

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Citrix Cloud Connector before 6.31.0.62192 suffers from insecure storage of sensitive information due to sensitive information being stored in the Citrix Cloud Connector installation log files. Such information could be used by an malicious actor to access a Citrix Cloud environment. This issue affects all versions of Citrix Cloud Connector that were installed by passing secure client parameters for installation via the command line. The issue does not affect Citrix Cloud Connector if it was installed using the interactive installer or where a parameter file was used with the command-line installer.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
敏感信息的不安全存储
Source: NVD (National Vulnerability Database)
Vulnerability Title
Citrix Cloud Connector 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Citrix Systems Citrix Cloud Connector是美国思杰系统(Citrix Systems)公司的一个 Citrix 组件,用作 Citrix Cloud 和您的资源位置之间的通信通道,无需任何复杂的网络或基础架构配置即可实现云管理。 Citrix Cloud Connector存在安全漏洞,该漏洞源于Citrix Cloud Connector安装日志中存储的敏感信息。攻击者可利用该漏洞获取敏感信息。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
-Citrix Cloud Connector Fixed in 6.31.0.62192 -

II. Public POCs for CVE-2021-22914

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2021-22914

登录查看更多情报信息。

Same Patch Batch · n/a · 2021-06-16 · 54 CVEs total

CVE-2020-8300Citrix Systems Citrix Application Delivery Controller 安全漏洞
CVE-2021-20094Wibu-Systems CodeMeter 缓冲区错误漏洞
CVE-2021-34683EXCELLENT INFOTEK CORPORATION (EIC) E-document System 信息泄露漏洞
CVE-2021-28979SafeNet KeySecure Management Console 注入漏洞
CVE-2021-32033Protectimus SLIM NFC 授权问题漏洞
CVE-2021-32612VeryFitPro 加密问题漏洞
CVE-2021-33813JDOM 代码问题漏洞
CVE-2021-32928Objective Open CBOR Run-time 安全漏洞
CVE-2021-31857ZOHO ManageEngine Password Manager Pro 安全漏洞
CVE-2021-31159Zoho ManageEngine ServiceDesk Plus MSP 安全漏洞
CVE-2021-27483ZOLL Defibrillator Dashboard 安全漏洞
CVE-2020-8299Citrix Systems NetScaler Gateway 资源管理错误漏洞
CVE-2021-34801Valine 代码注入漏洞
CVE-2021-34803TeamViewer 代码问题漏洞
CVE-2020-22198Desdev DedeCMS SQL注入漏洞
CVE-2020-27339Insyde InsydeH2O 输入验证错误漏洞
CVE-2020-20444Jact OpenClinic 安全漏洞
CVE-2020-24939Stampit supermixer 安全漏洞
CVE-2020-35762BloofoxCms 路径遍历漏洞
CVE-2020-35761BloofoxCms 跨站脚本漏洞

Showing top 20 of 54 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same vendor: n/a
Same weakness: CWE-922

V. Comments for CVE-2021-22914

No comments yet

Leave a comment