Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix gateway vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2016-2071
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 11.x prior to 11.0 Build 64.34, 10.5 prior to 10.5 Build 59.13, and 10.5.e before Build 59.1305.e allows remote malicious users to gain privileges via unspecified NS Web GUI commands.
Citrix Netscaler 11.0
Citrix Netscaler 10.5e
Citrix Netscaler 10.5
5
CVSSv2
CVE-2019-12044
A Buffer Overflow exists in Citrix NetScaler Gateway 10.5.x prior to 10.5.70.x, 11.1.x prior to 11.1.59.10, 12.0.x prior to 12.0.59.8, and 12.1.x prior to 12.1.49.23 and Citrix Application Delivery Controller 10.5.x prior to 10.5.70.x, 11.1.x prior to 11.1.59.10, 12.0.x prior to ...
Citrix Netscaler Gateway Firmware
Citrix Netscaler Application Delivery Controller Firmware
4.3
CVSSv2
CVE-2015-3642
The TLS and DTLS processing functionality in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway devices with firmware 9.x prior to 9.3 Build 68.5, 10.0 through Build 78.6, 10.1 before Build 130.13, 10.1.e before Build 130.1302.e, 10.5 before Build 55.8, ...
Citrix Netscaler Application Delivery Controller -
Citrix Netscaler Gateway -
7.5
CVSSv2
CVE-2009-2453
Citrix XenApp (formerly Presentation Server) 4.5 Hotfix Rollup Pack 3 does not apply an access policy when it is defined with the Access Gateway Advanced Edition filters, which allows malicious users to bypass intended access restrictions via unknown vectors.
Citrix Presentation Server 4.5
Citrix Xenapp 4.5
4.3
CVSSv2
CVE-2017-5933
Citrix NetScaler ADC and NetScaler Gateway 10.5 before Build 65.11, 11.0 before Build 69.12/69.123, and 11.1 before Build 51.21 randomly generates GCM nonces, which makes it marginally easier for remote malicious users to obtain the GCM authentication key and spoof data by levera...
Citrix Netscaler Application Delivery Controller Firmware
1 Github repository
7.5
CVSSv2
CVE-2014-7140
Unspecified vulnerability in the management interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.x prior to 10.1-129.11 and 10.5 prior to 10.5-50.10 allows remote malicious users to execute arbitrary code via unknown vectors.
Citrix Netscaler Application Delivery Controller Firmware 10.1
Citrix Netscaler Application Delivery Controller Firmware 10.5
Citrix Netscaler Application Delivery Controller Firmware 10.0
1 EDB exploit
4.3
CVSSv2
CVE-2016-4945
Cross-site scripting (XSS) vulnerability in vpn/js/gateway_login_form_view.js in Citrix NetScaler Gateway 11.0 before Build 66.11 allows remote malicious users to inject arbitrary web script or HTML via the NSC_TMAC cookie.
Citrix Netscaler Gateway 11.0 Firmware
NA
CVE-2023-24492
A vulnerability has been discovered in the Citrix Secure Access client for Ubuntu which, if exploited, could allow an malicious user to remotely execute code if a victim user opens an attacker-crafted link and accepts further prompts.
Citrix Secure Access Client
7.5
CVSSv2
CVE-2008-5882
SQL injection vulnerability in login.asp in Citrix Application Gateway - Broadcast Server (BCS) prior to 6.1, as used by Avaya AG250 - Broadcast Server prior to 2.0 and possibly other products, allows remote malicious users to execute arbitrary SQL commands via the txtUID paramet...
Citrix Broadcast Server
Avaya Broadcast Server
6.8
CVSSv2
CVE-2009-2631
Multiple clientless SSL VPN products that run in web browsers, including Stonesoft StoneGate; Cisco ASA; SonicWALL E-Class SSL VPN and SonicWALL SSL VPN; SafeNet SecureWire Access Gateway; Juniper Networks Secure Access; Nortel CallPilot; Citrix Access Gateway; and other products...
Cisco Adaptive Security Appliance
Sonicwall E-class Ssl Vpn
Sonicwall Ssl Vpn
Stonesoft Stonegate
Aladdin Safenet Securewire Access Gateway
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »