Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix gateway vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-8247
Citrix ADC and Citrix Gateway 13.0 prior to 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 prior to 12.1-58.15, Citrix ADC 12.1-FIPS prior to 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 prior to 11.1-65.12, Citrix SD-WAN WANOP 11.2...
Citrix Application Delivery Controller Firmware
Citrix Gateway
Citrix Netscaler Gateway
Citrix Sd-wan Wanop
5.3
CVSSv3
CVE-2020-10110
Citrix Gateway 11.1, 12.0, and 12.1 allows Information Exposure Through Caching. NOTE: Citrix disputes this as not a vulnerability. There is no sensitive information disclosure through the cache headers on Citrix ADC. The "Via" header lists cache protocols and recipient...
Citrix Gateway Firmware 11.1
Citrix Gateway Firmware 12.0
Citrix Gateway Firmware 12.1
7.5
CVSSv3
CVE-2020-10111
Citrix Gateway 11.1, 12.0, and 12.1 has an Inconsistent Interpretation of HTTP Requests. NOTE: Citrix disputes the reported behavior as not a security issue. Citrix ADC only caches HTTP/1.1 traffic for performance optimization
Citrix Gateway Firmware 11.1
Citrix Gateway Firmware 12.0
Citrix Gateway Firmware 12.1
5.4
CVSSv3
CVE-2020-10112
Citrix Gateway 11.1, 12.0, and 12.1 allows Cache Poisoning. NOTE: Citrix disputes this as not a vulnerability. By default, Citrix ADC only caches static content served under certain URL paths for Citrix Gateway usage. No dynamic content is served under these paths, which implies ...
Citrix Gateway Firmware 11.1
Citrix Gateway Firmware 12.0
Citrix Gateway Firmware 12.1
NA
CVE-2011-2882
Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 prior to 8.1-67.7, 9.0 prior to 9.0-70.5, and 9.1 prior to 9.1-96.4 allows remote malicious users to execute arbitrary code via crafted HTTP header da...
Citrix Access Gateway 9.1
Citrix Access Gateway 9.0
Citrix Access Gateway 8.1
1 EDB exploit
NA
CVE-2011-2883
The NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 prior to 8.1-67.7, 9.0 prior to 9.0-70.5, and 9.1 prior to 9.1-96.4 attempts to validate signed DLLs by checking the certificate subject, not the signature, which allows man-in-the-...
Citrix Access Gateway 8.1
Citrix Access Gateway 9.0
Citrix Access Gateway 9.1
NA
CVE-2007-0011
The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID in the URL, which allows context-dependent malicious users to hijack sessions by reading "residual information", including the a re...
Citrix Access Gateway 4.2
Citrix Access Gateway 4.5
Citrix Access Gateway 4.0
6.5
CVSSv3
CVE-2020-8299
Citrix ADC and Citrix/NetScaler Gateway 13.0 prior to 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS prior to 12.1-55.238, and Citrix SD-WAN WANOP Edition prior to 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way o...
Citrix Gateway
Citrix Netscaler Gateway
Citrix Application Delivery Controller Firmware
Citrix Sd-wan Wanop
NA
CVE-2011-2592
Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x prior to 9.3-57.5 and 10.0 prior to 10.0-69.4 allows remote malicious users to execute arbitrary code via a long CSEC ...
Citrix Access Gateway Plug-in 9.0
Citrix Access Gateway Plug-in 9.1
Citrix Access Gateway Plug-in 10.0
Citrix Access Gateway Plug-in 9.2
Citrix Access Gateway Plug-in 9.3
NA
CVE-2015-5080
The Management Interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.1 prior to 10.1.132.8, 10.5 before Build 56.15, and 10.5.e before Build 56.1505.e allows remote authenticated users to execute arbitrary shell commands via shell metacharac...
Citrix Netscaler Application Delivery Controller Firmware 10.1.123
Citrix Netscaler Application Delivery Controller Firmware 10.1.124
Citrix Netscaler Application Delivery Controller Firmware 10.5e
Citrix Netscaler Gateway Firmware 10.1.120.1316.e
Citrix Netscaler Application Delivery Controller Firmware 10.1
Citrix Netscaler Application Delivery Controller Firmware 10.1.120.1316.e
Citrix Netscaler Application Delivery Controller Firmware 10.1.127
Citrix Netscaler Application Delivery Controller Firmware 10.1.128
Citrix Netscaler Gateway Firmware 10.1.124
Citrix Netscaler Gateway Firmware 10.1.125
Citrix Netscaler Gateway Firmware 10.5.50.10
Citrix Netscaler Gateway Firmware 10.5.51.10
Citrix Netscaler Gateway Firmware 10.1.121
Citrix Netscaler Gateway Firmware 10.1.128
Citrix Netscaler Gateway Firmware 10.1.129
Citrix Netscaler Application Delivery Controller Firmware 10.1.121
Citrix Netscaler Application Delivery Controller Firmware 10.1.122
Citrix Netscaler Application Delivery Controller Firmware 10.1.129
Citrix Netscaler Application Delivery Controller Firmware 10.5
Citrix Netscaler Gateway Firmware 10.1.126
Citrix Netscaler Gateway Firmware 10.1.127
Citrix Netscaler Application Delivery Controller Firmware 10.1.125
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »