In Citrix XenMobile Server through 10.12 RP9, there is an Authenticated Command Injection vulnerability, leading to remote code execution with root privileges.Referenceshttps://docs.citrix.com/en-us/xenmobile/server/document-history.htmlhttps://gist.github.com/tree-chtsec/766f81e22ae383987d75eedb3b23b709https://support.citrix.com/article/CTX370551https://www.chtsecurity.com/news/09be10ae-b50e-46c9-8ce7-2e995fd988fe
