CVE-2020-8200 (GCVE-0-2020-8200)

Vulnerability from cvelistv5 – Published: 2020-09-18 20:13 – Updated: 2024-08-04 09:56
VLAI?
Summary
Improper authentication in Citrix StoreFront Server < 1912.0.1000 allows an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server.
Severity ?
No CVSS data available.
CWE
  • CWE-287 - Improper Authentication - Generic (CWE-287)
Assigner
References
Impacted products
Vendor Product Version
n/a Citrix StoreFront Affected: Citrix StoreFront 1912 CU1 (1912.0.1000), Citrix StoreFront 3.12 for 7.15 LTSR CU5 Hotfix (3.12.5001) and Citrix StoreFront 3.0 for 7.6 LTSR CU8 Hotfix (3.0.8001)
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T09:56:27.556Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://support.citrix.com/article/CTX277455"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Citrix StoreFront",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Citrix StoreFront 1912 CU1 (1912.0.1000), Citrix StoreFront 3.12 for 7.15 LTSR CU5 Hotfix (3.12.5001) and Citrix StoreFront 3.0 for 7.6 LTSR CU8 Hotfix (3.0.8001)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Improper authentication in Citrix StoreFront Server \u003c 1912.0.1000 allows an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-287",
              "description": "Improper Authentication - Generic (CWE-287)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2020-09-18T20:13:00",
        "orgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
        "shortName": "hackerone"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://support.citrix.com/article/CTX277455"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "support@hackerone.com",
          "ID": "CVE-2020-8200",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Citrix StoreFront",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Citrix StoreFront 1912 CU1 (1912.0.1000), Citrix StoreFront 3.12 for 7.15 LTSR CU5 Hotfix (3.12.5001) and Citrix StoreFront 3.0 for 7.6 LTSR CU8 Hotfix (3.0.8001)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Improper authentication in Citrix StoreFront Server \u003c 1912.0.1000 allows an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Improper Authentication - Generic (CWE-287)"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.citrix.com/article/CTX277455",
              "refsource": "MISC",
              "url": "https://support.citrix.com/article/CTX277455"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "36234546-b8fa-4601-9d6f-f4e334aa8ea1",
    "assignerShortName": "hackerone",
    "cveId": "CVE-2020-8200",
    "datePublished": "2020-09-18T20:13:00",
    "dateReserved": "2020-01-28T00:00:00",
    "dateUpdated": "2024-08-04T09:56:27.556Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:storefront_server:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"2006\", \"matchCriteriaId\": \"1FA9A017-F874-442F-88EE-845BC261C984\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:storefront_server:*:*:*:*:ltsr:*:*:*\", \"versionStartIncluding\": \"3.0\", \"versionEndExcluding\": \"3.0.8001\", \"matchCriteriaId\": \"708F920E-7EC8-44A0-9722-41EE95F753C8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:storefront_server:*:*:*:*:ltsr:*:*:*\", \"versionStartIncluding\": \"3.12\", \"versionEndExcluding\": \"3.12.5001\", \"matchCriteriaId\": \"DCFB4C56-A163-40E5-B705-560192D19290\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:storefront_server:*:*:*:*:ltsr:*:*:*\", \"versionStartIncluding\": \"1912\", \"versionEndExcluding\": \"1912.0.1000\", \"matchCriteriaId\": \"2A1FABF8-B828-42BA-9534-443058E04DB6\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Improper authentication in Citrix StoreFront Server \u003c 1912.0.1000 allows an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server.\"}, {\"lang\": \"es\", \"value\": \"Una autenticaci\\u00f3n inapropiada en Citrix StoreFront Server versiones anteriores a 1912.0.1000, permite a un atacante que est\\u00e1 autenticado en el mismo dominio del Microsoft Active Directory como un servidor Citrix StoreFront leer archivos arbitrarios de ese servidor\"}]",
      "id": "CVE-2020-8200",
      "lastModified": "2024-11-21T05:38:29.337",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:S/C:P/I:N/A:N\", \"baseScore\": 4.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2020-09-18T21:15:12.827",
      "references": "[{\"url\": \"https://support.citrix.com/article/CTX277455\", \"source\": \"support@hackerone.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.citrix.com/article/CTX277455\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "support@hackerone.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"support@hackerone.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-287\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-287\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2020-8200\",\"sourceIdentifier\":\"support@hackerone.com\",\"published\":\"2020-09-18T21:15:12.827\",\"lastModified\":\"2024-11-21T05:38:29.337\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper authentication in Citrix StoreFront Server \u003c 1912.0.1000 allows an attacker who is authenticated on the same Microsoft Active Directory domain as a Citrix StoreFront server to read arbitrary files from that server.\"},{\"lang\":\"es\",\"value\":\"Una autenticaci\u00f3n inapropiada en Citrix StoreFront Server versiones anteriores a 1912.0.1000, permite a un atacante que est\u00e1 autenticado en el mismo dominio del Microsoft Active Directory como un servidor Citrix StoreFront leer archivos arbitrarios de ese servidor\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:P/I:N/A:N\",\"baseScore\":4.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"support@hackerone.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-287\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-287\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:storefront_server:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"2006\",\"matchCriteriaId\":\"1FA9A017-F874-442F-88EE-845BC261C984\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:storefront_server:*:*:*:*:ltsr:*:*:*\",\"versionStartIncluding\":\"3.0\",\"versionEndExcluding\":\"3.0.8001\",\"matchCriteriaId\":\"708F920E-7EC8-44A0-9722-41EE95F753C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:storefront_server:*:*:*:*:ltsr:*:*:*\",\"versionStartIncluding\":\"3.12\",\"versionEndExcluding\":\"3.12.5001\",\"matchCriteriaId\":\"DCFB4C56-A163-40E5-B705-560192D19290\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:storefront_server:*:*:*:*:ltsr:*:*:*\",\"versionStartIncluding\":\"1912\",\"versionEndExcluding\":\"1912.0.1000\",\"matchCriteriaId\":\"2A1FABF8-B828-42BA-9534-443058E04DB6\"}]}]}],\"references\":[{\"url\":\"https://support.citrix.com/article/CTX277455\",\"source\":\"support@hackerone.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.citrix.com/article/CTX277455\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.