Unrated severityNVD Advisory· Published Jul 11, 2014· Updated Jun 17, 2026
CVE-2014-4700
CVE-2014-4700
Description
Citrix XenDesktop 7.x, 5.x, and 4.x, when pooled random desktop groups is enabled and ShutdownDesktopsAfterUse is disabled, allows local guest users to gain access to another user's desktop via unspecified vectors.
Affected products
6cpe:2.3:a:citrix:xendesktop:*:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:a:citrix:xendesktop:*:*:*:*:*:*:*:*range: >=5.0,<=5.6
- cpe:2.3:a:citrix:xendesktop:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:citrix:xendesktop:4.0:fp1:*:*:*:*:*:*
- cpe:2.3:a:citrix:xendesktop:4.0:fp2:*:*:*:*:*:*
- cpe:2.3:a:citrix:xendesktop:5.6:fp1:*:*:*:*:*:*
- (no CPE)range: 7.x, 5.x, and 4.x
Patches
Vulnerability mechanics
References
5- support.citrix.com/article/CTX139591nvdPatchVendor Advisory
- secunia.com/advisories/59889nvdThird Party Advisory
- www.securityfocus.com/bid/68530nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1030566nvdThird Party AdvisoryVDB Entry
- exchange.xforce.ibmcloud.com/vulnerabilities/94460nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.