7.6

CVE-2007-4017

Cross-site request forgery (CSRF) vulnerability in the web-based administration console in Citrix Access Gateway before firmware 4.5.5 allows remote attackers to perform certain configuration changes as administrators.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CitrixAccess Gateway Version4.5 Editionadvanced
CitrixAccess Gateway Version4.5 Editionstandard
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.49% 0.826
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.6 4.9 10
AV:N/AC:H/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/26143
Patch
Vendor Advisory
http://support.citrix.com/article/CTX114028
Patch
http://www.securityfocus.com/bid/24975
Patch
http://www.vupen.com/english/advisories/2007/2583
http://www.securitytracker.com/id?1018435
http://osvdb.org/37841
http://support.citrix.com/article/CTX113817
Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/35513