Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix gateway vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2020-8247
Citrix ADC and Citrix Gateway 13.0 prior to 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 prior to 12.1-58.15, Citrix ADC 12.1-FIPS prior to 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 prior to 11.1-65.12, Citrix SD-WAN WANOP 11.2...
Citrix Application Delivery Controller Firmware
Citrix Gateway
Citrix Netscaler Gateway
Citrix Sd-wan Wanop
828
VMScore
CVE-2011-2883
The NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 prior to 8.1-67.7, 9.0 prior to 9.0-70.5, and 9.1 prior to 9.1-96.4 attempts to validate signed DLLs by checking the certificate subject, not the signature, which allows man-in-the-...
Citrix Access Gateway 8.1
Citrix Access Gateway 9.0
Citrix Access Gateway 9.1
935
VMScore
CVE-2011-2882
Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 prior to 8.1-67.7, 9.0 prior to 9.0-70.5, and 9.1 prior to 9.1-96.4 allows remote malicious users to execute arbitrary code via crafted HTTP header da...
Citrix Access Gateway 9.1
Citrix Access Gateway 9.0
Citrix Access Gateway 8.1
1 EDB exploit
516
VMScore
CVE-2020-10112
Citrix Gateway 11.1, 12.0, and 12.1 allows Cache Poisoning. NOTE: Citrix disputes this as not a vulnerability. By default, Citrix ADC only caches static content served under certain URL paths for Citrix Gateway usage. No dynamic content is served under these paths, which implies ...
Citrix Gateway Firmware 11.1
Citrix Gateway Firmware 12.0
Citrix Gateway Firmware 12.1
445
VMScore
CVE-2020-10110
Citrix Gateway 11.1, 12.0, and 12.1 allows Information Exposure Through Caching. NOTE: Citrix disputes this as not a vulnerability. There is no sensitive information disclosure through the cache headers on Citrix ADC. The "Via" header lists cache protocols and recipient...
Citrix Gateway Firmware 11.1
Citrix Gateway Firmware 12.0
Citrix Gateway Firmware 12.1
445
VMScore
CVE-2007-0011
The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID in the URL, which allows context-dependent malicious users to hijack sessions by reading "residual information", including the a re...
Citrix Access Gateway 4.2
Citrix Access Gateway 4.5
Citrix Access Gateway 4.0
445
VMScore
CVE-2020-10111
Citrix Gateway 11.1, 12.0, and 12.1 has an Inconsistent Interpretation of HTTP Requests. NOTE: Citrix disputes the reported behavior as not a security issue. Citrix ADC only caches HTTP/1.1 traffic for performance optimization
Citrix Gateway Firmware 11.1
Citrix Gateway Firmware 12.0
Citrix Gateway Firmware 12.1
294
VMScore
CVE-2020-8299
Citrix ADC and Citrix/NetScaler Gateway 13.0 prior to 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS prior to 12.1-55.238, and Citrix SD-WAN WANOP Edition prior to 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way o...
Citrix Gateway
Citrix Netscaler Gateway
Citrix Application Delivery Controller Firmware
Citrix Sd-wan Wanop
828
VMScore
CVE-2011-2592
Heap-based buffer overflow in the StartEpa method in the nsepacom ActiveX control (nsepa.exe) in Citrix Access Gateway Enterprise Edition Plug-in for Windows 9.x prior to 9.3-57.5 and 10.0 prior to 10.0-69.4 allows remote malicious users to execute arbitrary code via a long CSEC ...
Citrix Access Gateway Plug-in 9.0
Citrix Access Gateway Plug-in 9.1
Citrix Access Gateway Plug-in 10.0
Citrix Access Gateway Plug-in 9.2
Citrix Access Gateway Plug-in 9.3
445
VMScore
CVE-2009-2214
The Secure Gateway service in Citrix Secure Gateway 3.1 and previous versions allows remote malicious users to cause a denial of service (CPU consumption) via an unspecified request.
Citrix Secure Gateway 3.0
Citrix Secure Gateway
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
CVE-2024-20360
CVE-2021-47559
XXE
CVE-2024-5229
CVE-2021-47543
CVE-2021-47571
SSTI
CVE-2024-4978
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »