Vulnerability Details : CVE-2014-1663
Unspecified vulnerability in Citrix XenMobile Device Manager server (formerly Zenprise Device Manager server) 8.5, 8.6, and MDM 8.0.1 allows remote attackers to obtain sensitive information via unknown vectors.
Exploit prediction scoring system (EPSS) score for CVE-2014-1663
Probability of exploitation activity in the next 30 days: 0.48%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 73 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2014-1663
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:P/I:N/A:N |
10.0
|
2.9
|
NIST |
References for CVE-2014-1663
-
http://www.securitytracker.com/id/1029728
Citrix XenMobile Device Manager Unspecified Bug Lets Remote Users Access Stored Data - SecurityTracker
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/90959
Citrix XenMobile Device Manager unspecified information disclosure CVE-2014-1663 Vulnerability Report
-
http://osvdb.org/102884
-
http://support.citrix.com/article/CTX140044
CVE-2014-1663 - Vulnerability in Citrix XenMobile Device Manager server, formerly known as Zenprise Device Manager server, could result in unauthenticated information disclosureVendor Advisory
-
http://www.securityfocus.com/bid/65348
Citrix XenMobile Device Manager server CVE-2014-166 Unspecified Information Disclosure Vulnerability
Products affected by CVE-2014-1663
- cpe:2.3:a:citrix:xenmobile_device_manager:8.5:*:*:*:*:*:*:*
- cpe:2.3:a:citrix:xenmobile_device_manager:8.6:*:*:*:*:*:*:*
- cpe:2.3:a:citrix:xenmobile_device_manager_mdm:8.0.1:*:*:*:*:*:*:*