VYPR

ADC

by Citrix Systems

CVEs (29)

  • CVE-2020-8300MedJun 16, 2021
    risk 0.42cvss 6.5epss 0.03

    Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or…

  • CVE-2020-8299MedJun 16, 2021
    risk 0.42cvss 6.5epss 0.00

    Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way of a…

  • CVE-2020-8196MedKEVJul 10, 2020
    risk 0.42cvss 4.3epss 0.26

    Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.

  • CVE-2023-24487MedJul 10, 2023
    risk 0.41cvss 6.3epss 0.01

    Arbitrary file read in Citrix ADC and Citrix Gateway 

  • CVE-2020-8191MedJul 10, 2020
    risk 0.41cvss 6.1epss 0.23

    Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows reflected Cross Site Scripting (XSS).

  • CVE-2022-27509MedJul 28, 2022
    risk 0.40cvss 6.1epss 0.00

    Unauthenticated redirection to a malicious website

  • CVE-2022-27505MedApr 13, 2022
    risk 0.40cvss 6.1epss 0.01

    Reflected cross site scripting (XSS)

  • CVE-2020-8245MedSep 18, 2020
    risk 0.40cvss 6.1epss 0.01

    Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12,…

  • CVE-2020-8198MedJul 10, 2020
    risk 0.40cvss 6.1epss 0.01

    Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in Stored Cross-Site Scripting (XSS).

Page 2 of 2