CVE-2014-8495

Severity CVSS v4.0:
Pending analysis
Type:
CWE-310 Cryptographic Issues
Publication date:
31/10/2014
Last modified:
12/04/2025

Description

Citrix XenMobile MDX Toolkit before 9.0.4, when used to wrap iOS 8 applications, does not properly encrypt cached application data, which allows context-dependent attackers to obtain sensitive information by reading the cache.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:citrix:xenmobile:*:*:*:*:*:*:*:* 9.0.3 (including)
cpe:2.3:a:citrix:xenmobile:8.5:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xenmobile:8.6:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xenmobile:8.7:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xenmobile:9.0:*:*:*:*:*:*:*
cpe:2.3:a:citrix:xenmobile:9.0.2:*:*:*:*:*:*:*