10
CVE-2008-2528
- EPSS 2.71%
- Veröffentlicht 03.06.2008 15:32:00
- Zuletzt bearbeitet 16.06.2026 22:53:56
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Unspecified vulnerability in Citrix Access Gateway Standard Edition 4.5.7 and earlier and Advanced Edition 4.5 HF2 and earlier allows attackers to bypass authentication and gain "access to network resources" via unspecified vectors.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Citrix ≫ Access Gateway Updateadvanced Editionhf2 Version <= 4.5
Citrix ≫ Access Gateway Editionstandard Version <= 4.5.7
Citrix ≫ Access Gateway Version4.5.5 Editionstandard
Citrix ≫ Access Gateway Version4.5.6 Editionstandard
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.71% | 0.84 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-287 Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
http://secunia.com/advisories/30175
http://support.citrix.com/article/CTX116930
http://www.securityfocus.com/bid/29174
http://www.securitytracker.com/id?1020025
http://www.vupen.com/english/advisories/2008/1474/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42356