Citrix Gateway

CVEs (12)

CVE	Vendor / Product	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2022-27518	Citrix Systems Citrix Gateway	0.14	—	0.28	KEV	Dec 13, 2022	Unauthenticated remote arbitrary code execution
CVE-2023-24488	Citrix Systems Citrix Gateway	0.07	—	0.91		Jul 10, 2023	Cross site scripting vulnerability in Citrix ADC and Citrix Gateway  in allows and attacker to perform cross site scripting
CVE-2023-24487	Netscaler ADC	0.03	—	0.36		Jul 10, 2023	Arbitrary file read in Citrix ADC and Citrix Gateway
CVE-2023-3467	Citrix Systems Citrix Gateway	0.00	—	0.00		Jul 19, 2023	Privilege Escalation to root administrator (nsroot)
CVE-2023-3466	Citrix Systems Citrix Gateway	0.00	—	0.01		Jul 19, 2023	Reflected Cross-Site Scripting (XSS)
CVE-2022-27516	Citrix Systems Gateway and ADC	0.00	—	0.00		Nov 8, 2022	User login brute force protection functionality bypass
CVE-2022-27510	Citrix Systems Citrix Gateway	0.00	—	0.01		Nov 8, 2022	Unauthorized access to Gateway user capabilities
CVE-2022-27513	Citrix Systems Citrix Gateway	0.00	—	0.01		Nov 8, 2022	Remote desktop takeover via phishing
CVE-2021-22919	Citrix Systems Citrix Gateway	0.00	—	0.01		Aug 5, 2021	A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the…
CVE-2020-8246	Citrix Systems Citrix Gateway	0.00	—	0.01		Sep 18, 2020	Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before…
CVE-2020-8198	Citrix Systems Citrix Gateway	0.00	—	0.00		Jul 10, 2020	Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in Stored Cross-Site Scripting (XSS).
CVE-2020-10112	Citrix Systems Citrix Gateway	0.00	—	0.01		Mar 6, 2020	Citrix Gateway 11.1, 12.0, and 12.1 allows Cache Poisoning. NOTE: Citrix disputes this as not a vulnerability. By default, Citrix ADC only caches static content served under certain URL paths for Citrix Gateway usage. No dynamic content is served under these paths, which implies…

CVE-2022-27518KEVDec 13, 2022
Citrix Systems
Citrix Gateway
risk 0.14cvss —epss 0.28
Unauthenticated remote arbitrary code execution
CVE-2023-24488Jul 10, 2023
Citrix Systems
Citrix Gateway
risk 0.07cvss —epss 0.91
Cross site scripting vulnerability in Citrix ADC and Citrix Gateway  in allows and attacker to perform cross site scripting
CVE-2023-24487Jul 10, 2023
Netscaler
ADC
risk 0.03cvss —epss 0.36
Arbitrary file read in Citrix ADC and Citrix Gateway 
CVE-2023-3467Jul 19, 2023
Citrix Systems
Citrix Gateway
risk 0.00cvss —epss 0.00
Privilege Escalation to root administrator (nsroot)
CVE-2023-3466Jul 19, 2023
Citrix Systems
Citrix Gateway
risk 0.00cvss —epss 0.01
Reflected Cross-Site Scripting (XSS)
CVE-2022-27516Nov 8, 2022
Citrix Systems
Gateway and ADC
risk 0.00cvss —epss 0.00
User login brute force protection functionality bypass
CVE-2022-27510Nov 8, 2022
Citrix Systems
Citrix Gateway
risk 0.00cvss —epss 0.01
Unauthorized access to Gateway user capabilities
CVE-2022-27513Nov 8, 2022
Citrix Systems
Citrix Gateway
risk 0.00cvss —epss 0.01
Remote desktop takeover via phishing
CVE-2021-22919Aug 5, 2021
Citrix Systems
Citrix Gateway
risk 0.00cvss —epss 0.01
A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the…
CVE-2020-8246Sep 18, 2020
Citrix Systems
Citrix Gateway
risk 0.00cvss —epss 0.01
Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before…
CVE-2020-8198Jul 10, 2020
Citrix Systems
Citrix Gateway
risk 0.00cvss —epss 0.00
Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in Stored Cross-Site Scripting (XSS).
CVE-2020-10112Mar 6, 2020
Citrix Systems
Citrix Gateway
risk 0.00cvss —epss 0.01
Citrix Gateway 11.1, 12.0, and 12.1 allows Cache Poisoning. NOTE: Citrix disputes this as not a vulnerability. By default, Citrix ADC only caches static content served under certain URL paths for Citrix Gateway usage. No dynamic content is served under these paths, which implies…