PatchSiren cyber security CVE debrief
CVE-2016-9680 Citrix CVE debrief
CVE-2016-9680 is a high-severity information disclosure issue in Citrix Provisioning Services. According to the supplied description and NVD data, versions before 7.12 can expose sensitive information from kernel memory through unspecified vectors. The NVD record identifies multiple affected 7.x releases and rates the issue as network-exploitable with high confidentiality impact.
- Vendor
- Citrix
- Product
- CVE-2016-9680
- CVSS
- HIGH 7.5
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2017-01-18
- Original CVE updated
- 2026-05-13
- Advisory published
- 2017-01-18
- Advisory updated
- 2026-05-13
Who should care
Administrators and security teams responsible for Citrix Provisioning Services deployments, especially environments running versions 7.0, 7.1, 7.6, 7.7, 7.8, 7.9, or 7.11 as listed by NVD. Any organization using Citrix Provisioning Services before 7.12 should treat this as relevant.
Technical summary
The supplied NVD entry describes a confidentiality issue in Citrix Provisioning Services before 7.12 that allows sensitive information to be obtained from kernel memory. NVD maps the weakness to CWE-200 and assigns CVSS 3.0 vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N, indicating network exposure, no privileges required, no user interaction, and high confidentiality impact only. The vulnerable CPEs listed by NVD include Citrix Provisioning Services 7.0, 7.1, 7.6, 7.7, 7.8, 7.9, and 7.11.
Defensive priority
High. The issue is remotely reachable according to the CVSS vector and can leak sensitive kernel-memory information, so remediation should be prioritized.
Recommended defensive actions
- Identify all Citrix Provisioning Services installations and confirm exact versions in use.
- Treat versions before 7.12 as vulnerable until validated against vendor guidance.
- Upgrade to a fixed version per Citrix advisory CTX219580 and your maintenance process.
- Restrict network exposure to Provisioning Services systems while remediation is pending.
- Review logs and access patterns for unusual activity involving affected servers.
- Document remediation status for the specific affected versions listed by NVD.
Evidence notes
Evidence in the supplied corpus comes from the NVD CVE record and cited references. The CVE description states that Citrix Provisioning Services before 7.12 allows attackers to obtain sensitive information from kernel memory via unspecified vectors. NVD classifies the weakness as CWE-200 and provides CVSS 3.0 vector AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N. The NVD CPE list explicitly marks Citrix Provisioning Services 7.0, 7.1, 7.6, 7.7, 7.8, 7.9, and 7.11 as vulnerable. No KEV entry or ransomware campaign use was supplied.
Official resources
-
CVE-2016-9680 CVE record
CVE.org
-
CVE-2016-9680 NVD detail
NVD
-
Source item URL
nvd_modified
-
Mitigation or vendor reference
[email protected] - Third Party Advisory, VDB Entry
-
Mitigation or vendor reference
[email protected] - Third Party Advisory, VDB Entry
-
Mitigation or vendor reference
[email protected] - Vendor Advisory
CVE published on 2017-01-18; NVD record last modified on 2026-05-13. No KEV date was supplied, and no known ransomware campaign use was provided in the corpus.