Citrix

NetScaler Gateway

25 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-6549

Warning
  • EPSS 16.34%
  • Published 17.01.2024 21:15:11
  • Last modified 27.01.2025 21:48:20

Improper Restriction of Operations within the Bounds of a Memory Buffer in NetScaler ADC and NetScaler Gateway allows Unauthenticated Denial of Service and Out-Of-Bounds Memory Read

8.8

CVE-2023-6548

Warning
  • EPSS 17.8%
  • Published 17.01.2024 20:15:50
  • Last modified 27.01.2025 21:48:11

Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Managem...

7.5

CVE-2023-4967

  • EPSS 0.44%
  • Published 27.10.2023 19:15:41
  • Last modified 21.11.2024 08:36:21

Denial of Service in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA Virtual Server

7.5

CVE-2023-4966

Warning Media report
  • EPSS 94.34%
  • Published 10.10.2023 14:15:10
  • Last modified 13.03.2025 19:53:13

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA  virtual server.

8

CVE-2023-3467

Warning
  • EPSS 0.43%
  • Published 19.07.2023 19:15:12
  • Last modified 21.11.2024 08:17:19

Privilege Escalation to root administrator (nsroot)

6.1

CVE-2023-3466

Warning
  • EPSS 0.94%
  • Published 19.07.2023 19:15:12
  • Last modified 21.11.2024 08:17:19

Reflected Cross-Site Scripting (XSS)

9.8

CVE-2023-3519

Warning Exploit
  • EPSS 88.73%
  • Published 19.07.2023 18:15:11
  • Last modified 10.03.2025 20:46:43

Unauthenticated remote code execution

8.1

CVE-2021-22927

  • EPSS 0.3%
  • Published 05.08.2021 21:15:11
  • Last modified 21.11.2024 05:50:56

A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an attacker to hijack a session.

7.5

CVE-2021-22919

  • EPSS 0.7%
  • Published 05.08.2021 21:15:10
  • Last modified 21.11.2024 05:50:54

A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exp...

6.5

CVE-2020-8300

  • EPSS 11.08%
  • Published 16.06.2021 14:15:08
  • Last modified 21.11.2024 05:38:41

Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user sess...