CVE-2008-6561

high

Description

Citrix Presentation Server Client for Windows before 10.200 does not clear "credential information" from process memory in unspecified circumstances, which might allow local users to gain privileges.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/41102

http://www.vupen.com/english/advisories/2008/0845

http://www.securitytracker.com/id?1019605

http://support.citrix.com/article/CTX116227

Details

Source: Mitre, NVD

Published: 2009-03-31

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 1.9

Vector: CVSS2#AV:L/AC:M/Au:N/C:P/I:N/A:N

Severity: Low

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00079