TTCSIRT-332.08.12.20: TT-CSIRT ADVISORY- CITRIX ENDPOINT MANAGEMENT (CEM) SECURITY UPDATE
Multiple vulnerabilities have been discovered in Citrix Endpoint Management (CEM), also referred to as XenMobile.
These vulnerabilities have the following identifiers:
- CVE-2020-8208
- CVE-2020-8209
- CVE-2020-8210
- CVE-2020-8211
- CVE-2020-8212
The following versions of Citrix Endpoint Management (CEM) are affected by critical severity vulnerabilities:
- XenMobile Server 10.12 before RP2
- XenMobile Server 10.11 before RP4
- XenMobile Server 10.10 before RP6
- XenMobile Server before 10.9 RP5
Users affected by these critical severity vulnerabilities are strongly recommended to update their deployments immediately.
Additionally, the following versions of Citrix Endpoint Management (CEM) are affected by medium and low severity vulnerabilities:
- XenMobile Server 10.12 before RP3
- XenMobile Server 10.11 before RP6
- XenMobile Server 10.10 before RP6
- XenMobile Server before 10.9 RP5
Users who are only affected by these medium and low severity vulnerabilities are recommended to update their deployments as soon as their patching schedule allows.
Users using the cloud version of Citrix Endpoint Management are not affected by these vulnerabilities.
The latest Rolling Patches for Citrix Endpoint Management (CEM) can be downloaded from the following locations:
- XenMobile Server 10.12 RP3: https://support.citrix.com/article/CTX277473
- XenMobile Server 10.11 RP6: https://support.citrix.com/article/CTX277698
- XenMobile Server 10.10 RP6: https://support.citrix.com/article/CTX279101
- XenMobile Server 10.9 RP5: https://support.citrix.com/article/CTX279098
The Trinidad and Tobago Cyber Security Incident Response Team (TTCSIRT) encourages users and administrators to ensure they are running a supported version and then download and deploy the latest rolling patch to their deployments.
If you have any queries or comments with regards to this advisory, please feel free to contact TTCSIRT via contacts@ttcsirt.gov.tt