Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix netscaler access gateway - vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2018-6186
Citrix NetScaler VPX through NS12.0 53.13.nc allows an SSRF attack via the /rapi/read_url URI by an authenticated attacker who has a webapp account. The attacker can gain access to the nsroot account, and execute remote commands with root privileges.
Citrix Netscaler 12.0
9
CVSSv2
CVE-2017-14602
A vulnerability has been identified in the management interface of Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.1 before build 135.18, 10.5 before build 66.9, 10.5e before build 60.7010.e, 11.0 before build 70.16, 11.1 before build 55.13, and 12...
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 10.1
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 10.5e
Citrix Application Delivery Controller Firmware 10.5e
Citrix Application Delivery Controller Firmware 10.5
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 10.1
Citrix Netscaler Gateway Firmware 11.0
Citrix Application Delivery Controller Firmware 11.0
Citrix Application Delivery Controller Firmware 11.1
Citrix Netscaler Gateway Firmware 10.5
7.5
CVSSv2
CVE-2019-19781
An issue exists in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.
Citrix Application Delivery Controller Firmware 10.5
Citrix Application Delivery Controller Firmware 11.1
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 12.1
Citrix Application Delivery Controller Firmware 13.0
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 12.1
Citrix Gateway Firmware 13.0
2 Metasploit modules
63 Github repositories
21 Articles
7.5
CVSSv2
CVE-2019-18225
An issue exists in Citrix Application Delivery Controller (ADC) and Gateway prior to 10.5 build 70.8, 11.x prior to 11.1 build 63.9, 12.0 before build 62.10, 12.1 before build 54.16, and 13.0 before build 41.28. An attacker with management-interface access can bypass authenticati...
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 12.1
Citrix Application Delivery Controller Firmware 13.0
Citrix Application Delivery Controller Firmware 10.5
Citrix Application Delivery Controller Firmware 11.1
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 12.1
Citrix Gateway Firmware 13.0
6.8
CVSSv2
CVE-2015-0209
Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL prior to 0.9.8zf, 1.0.0 prior to 1.0.0r, 1.0.1 prior to 1.0.1m, and 1.0.2 prior to 1.0.2a might allow remote malicious users to cause a denial of service (memory corruption and applica...
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.0n
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.0m
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0j
Openssl Openssl 1.0.0p
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.0o
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.0k
Openssl Openssl 1.0.1k
Openssl Openssl 1.0.0
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1e
6.3
CVSSv2
CVE-2009-2213
The default configuration of the Security global settings on the Citrix NetScaler Access Gateway appliance with Enterprise Edition firmware 9.0, 8.1, and previous versions specifies Allow for the Default Authorization Action option, which might allow remote authenticated users to...
Citrix Netscaler Access Gateway Firmware
Citrix Netscaler Access Gateway Firmware 7.0
Citrix Netscaler Access Gateway Firmware 8.0
Citrix Netscaler Access Gateway Firmware 9.0
Citrix Netscaler Access Gateway -
5.4
CVSSv2
CVE-2013-2767
Unspecified vulnerability in Citrix NetScaler Access Gateway Enterprise Edition (AGEE) prior to 9.3.62.4 and 10.x up to and including 10.0.74.4, and NetScaler AGEE Common Criteria build prior to 9.3.53.6, allows remote malicious users to bypass intended intranet access restrictio...
Citrix Netscaler Access Gateway Firmware 10.0
Citrix Netscaler Access Gateway Firmware 10.0.74.4
Citrix Netscaler Access Gateway Firmware 9.3
Citrix Netscaler Access Gateway Firmware 9.2
Citrix Netscaler Access Gateway Firmware 9.1
Citrix Netscaler Access Gateway Firmware
Citrix Netscaler Access Gateway -
5
CVSSv2
CVE-2020-8193
Improper access control in Citrix ADC and Citrix Gateway versions prior to 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions prior to 11.1.1a, 11.0.3d and 10.2.7 allows unauthenticated access to certain URL endpoints.
Citrix Application Delivery Controller Firmware
Citrix Netscaler Gateway Firmware
Citrix Gateway Firmware
Citrix Sd-wan Wanop
4 Github repositories
5
CVSSv2
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
5
CVSSv2
CVE-2014-4347
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway (formerly Access Gateway Enterprise Edition) prior to 9.3-62.4 and 10.x prior to 10.1-126.12 allows malicious users to obtain sensitive information via vectors related to a cookie.
Citrix Netscaler Access Gateway Firmware 10.1
Citrix Netscaler Access Gateway Firmware 9.3
Citrix Netscaler Access Gateway -
Citrix Netscaler Application Delivery Controller Firmware 9.3
Citrix Netscaler Application Delivery Controller Firmware 10.1
Citrix Netscaler Application Delivery Controller -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »