CVE-2018-18571 – Authentication Bypass vulnerability in XenMobile Server

Citrix recommends customers running Citrix XenMobile Server 10.9.0 upgrade to Rolling Patch 3 found at https://support.citrix.com/article/CTX249985 and Citrix XenMobile Server 10.8.0 upgrade to Rolling Patch 6 found at https://support.citrix.com/article/CTX250711.

Also, a newer version of Citrix XenMobile Server is now available: Citrix XenMobile Server version 10.10.0.7

Citrix strongly recommends that affected customers upgrade their XenMobile Servers to the new version. This new version can be obtained from the following location:

Citrix Product Downloads: https://www.citrix.com/downloads/citrix-endpoint-management/.

These issues have already been addressed in the Citrix Cloud service.

Windows device users who have upgraded to Citrix Endpoint Management 19.3.1, please reference the following article and recreate your Store device policy: https://support.citrix.com/article/CTX249857.

Related:

  • No Related Posts

Leave a Reply