Back to search
CVE-2020-8274
Published: Jan 6, 2021
Modified: Aug 4, 2024
PUBLISHED
Description
Citrix Secure Mail for Android before 20.11.0 suffers from Improper Control of Generation of Code ('Code Injection') by allowing unauthenticated access to read data stored within Secure Mail. Note that a malicious app would need to be installed on the Android device or a threat actor would need to execute arbitrary code on the Android device.
| Vendor | Product | Versions |
|---|---|---|
n/a | Citrix Secure Mail for Android | affected Fixed in 20.11.0 |
Weaknesses (CWE)
References
https://support.citrix.com/article/CTX286763
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now