Citrix recently informed its customers about a vulnerability in the PuTTY SSH client that could potentially allow attackers to steal a XenCenter administrator’s private SSH key. XenCenter is a tool used to manage Citrix Hypervisor environments from a Windows desktop and is responsible for tasks like monitoring and deploying virtual machines. This security flaw, identified … Read more
Citrix recently informed its customers about a security vulnerability in the PuTTY SSH client that could potentially allow attackers to steal a XenCenter administrator’s private SSH key. XenCenter is a tool used to manage Citrix Hypervisor environments from a Windows desktop, allowing users to deploy and monitor virtual machines. The vulnerability, tracked as CVE-2024-31497, affects … Read more
Citrix has issued a warning to its customers regarding a security flaw in the PuTTY SSH client that could potentially enable attackers to steal a XenCenter administrator’s private SSH key. The flaw, identified as CVE-2024-31497, impacts various versions of XenCenter for Citrix Hypervisor 8.2 CU1 LTSR which utilized PuTTY for SSH connections to guest virtual … Read more
Administrators need to manually address a vulnerability in the PuTTY SSH client that could allow attackers to steal a private SSH key. The vulnerability, identified as CVE-2024-31497, is found in XenCenter for Citrix Hypervisor 8.2 CU1 LTSR. However, the vulnerable third-party component has been removed in version 8.2.6. Versions of PuTTY prior to 0.81 may … Read more