TTPwire Vol. 1 · MITRE ATT&CK·Tagged

← All stories

Lobsters — security tag

89 vulnerabilities in XAPI / Citrix XenServer

shittrix.moksha.dk via freddyb · 2026-04-27 · Read original ↗

ATT&CK techniques detected

5 predictions
T1542.001System Firmware
83%
“one more layer that high - assurance deployers should think about : uefi and baseboard firmware. boc - 1 gives a vm - admin full host filesystem read / write and therefore root equivalence on the hypervisor dom0. from dom0, an attacker can write to the spi flash of the motherboar…”
T1557.001Name Resolution Poisoning and SMB Relay
61%
“) triggers baseiscsi. load ( ) - > iscsiadm - m discovery - t sendtargets - p attacker _ ip - > iscsiadm - m node - - login - t attacker _ iqn - p attacker _ ip - > hypervisor connects to attacker - controlled iscsi target no ip address validation, no iqn format verification, no …”
T1068Exploitation for Privilege Escalation
58%
“storage _ driver _ domain = pbd detach dos on vm shutdown designation : pdc - 1 ( pbd device config, finding 1 ) cvss 3. 1 : 9. 1 critical · av : n / ac : l / pr : h / ui : n / s : c / c : h / i : h / a : h cvss 4. 0 : 8. 7 high a pool - operator can create an iscsi sr with attac…”
T1588.006Vulnerabilities
38%
“89 vulnerabilities in xapi / citrix xenserver _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ / _ _ _ | | | | | _ _ | _ _ | _ _ | _ \ | _ _ | \ \ / / \ _ _ _ \ | | _ | | | | | | | | | | _ ) | | | \ / _ _ _ ) | _ | | | | | | | | _ < | | / \ | _ _ _ _ / | _ | | _ | _ _ …”
T1021.002SMB/Windows Admin Shares
31%
“) cvss 3. 1 : 9. 9 critical · av : n / ac : l / pr : l / ui : n / s : c / c : h / i : h / a : h cvss 4. 0 : 8. 6 high a low - privilege user can inject storage protocol commands ( iscsi, nfs, fc, smb ) through the hypervisor by writing attacker - controlled values to vdi. sm _ co…”

Summary

Comments