CVE-2023-6184

Summary

Cross SiteScripting vulnerability in Citrix Session Recording allows attacker to perform Cross Site Scripting

Affected Software

VendorProductVersion RangeStatus
Cloud Software GroupCitrix Session Recording2311 Current Release < 0affected
Cloud Software GroupCitrix Session Recording1912 LTSR < CU8 hotfix 19.12.8100.4affected
Cloud Software GroupCitrix Session Recording2203 LTSR < CU4affected

Weaknesses

  • CWE-913: CWE-913 Improper Control of Dynamically-Managed Code Resources

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References