Medium severity5.9NVD Advisory· Published Dec 13, 2017· Updated Jun 17, 2026
CVE-2017-17382
CVE-2017-17382
Description
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.5 before build 67.13, 11.0 before build 71.22, 11.1 before build 56.19, and 12.0 before build 53.22 might allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
11cpe:2.3:o:citrix:application_delivery_controller_firmware:10.5:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:citrix:application_delivery_controller_firmware:10.5:*:*:*:*:*:*:*
- cpe:2.3:o:citrix:application_delivery_controller_firmware:11.0:*:*:*:*:*:*:*
- cpe:2.3:o:citrix:application_delivery_controller_firmware:11.1:*:*:*:*:*:*:*
- cpe:2.3:o:citrix:application_delivery_controller_firmware:12.0:*:*:*:*:*:*:*
- (no CPE)range: < 10.5 before build 67.13, < 11.0 before build 71.22, < 11.1 before build 56.19, < 12.0 before build 53.22
cpe:2.3:o:citrix:netscaler_gateway_firmware:10.5:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:citrix:netscaler_gateway_firmware:10.5:*:*:*:*:*:*:*
- cpe:2.3:o:citrix:netscaler_gateway_firmware:11.0:*:*:*:*:*:*:*
- cpe:2.3:o:citrix:netscaler_gateway_firmware:11.1:*:*:*:*:*:*:*
- cpe:2.3:o:citrix:netscaler_gateway_firmware:12.0:*:*:*:*:*:*:*
- (no CPE)range: < 10.5 before build 67.13, < 11.0 before build 71.22, < 11.1 before build 56.19, < 12.0 before build 53.22
- Range: < 10.5 before build 67.13, < 11.0 before build 71.22, < 11.1 before build 56.19, < 12.0 before build 53.22
Patches
Vulnerability mechanics
References
5- www.securityfocus.com/bid/102173nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1039985nvdThird Party AdvisoryVDB Entry
- robotattack.orgnvdThird Party Advisory
- support.citrix.com/article/ctx230238nvdVendor Advisory
- www.kb.cert.org/vuls/id/144389nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.