Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix netscaler 10.5 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-2839
The Nitro API in Citrix NetScaler prior to 10.5 build 52.3nc uses an incorrect Content-Type when returning an error message, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via the file_name JSON member in params/xen_hotfix/0 to nitro/v1/config/x...
Citrix Netscaler 10.5
NA
CVE-2015-2838
Cross-site request forgery (CSRF) vulnerability in Nitro API in Citrix NetScaler prior to 10.5 build 52.3nc allows remote malicious users to hijack the authentication of administrators for requests that execute arbitrary commands as nsroot via shell metacharacters in the file_nam...
Citrix Netscaler 10.5
1 EDB exploit
NA
CVE-2015-2840
Cross-site scripting (XSS) vulnerability in help/rt/large_search.html in Citrix NetScaler prior to 10.5 build 52.3nc allows remote malicious users to inject arbitrary web script or HTML via the searchQuery parameter.
Citrix Netscaler 10.5
NA
CVE-2015-2841
Citrix NetScaler AppFirewall, as used in NetScaler 10.5, allows remote malicious users to bypass intended firewall restrictions via a crafted Content-Type header, as demonstrated by the application/octet-stream and text/xml Content-Types.
Citrix Netscaler 10.5
1 EDB exploit
NA
CVE-2015-0209
Use-after-free vulnerability in the d2i_ECPrivateKey function in crypto/ec/ec_asn1.c in OpenSSL prior to 0.9.8zf, 1.0.0 prior to 1.0.0r, 1.0.1 prior to 1.0.1m, and 1.0.2 prior to 1.0.2a might allow remote malicious users to cause a denial of service (memory corruption and applica...
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.0n
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.0m
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0j
Openssl Openssl 1.0.0p
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.0o
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.0k
Openssl Openssl 1.0.1k
Openssl Openssl 1.0.0
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1e
NA
CVE-2014-3569
The ssl23_get_client_hello function in s23_srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via an unexpected ...
Openssl Openssl 1.0.1j
NA
CVE-2014-8580
Citrix NetScaler Application Delivery Controller and NetScaler Gateway 10.5.50.10 prior to 10.5-52.11, 10.1.122.17 prior to 10.1-129.11, and 10.1-120.1316.e prior to 10.1-129.1105.e, when using unspecified configurations, allows remote authenticated users to access "network ...
Citrix Netscaler Gateway Firmware 10.1.122
Citrix Netscaler Gateway Firmware 10.1.123
Citrix Netscaler Application Delivery Controller Firmware 10.1.120.1316.e
Citrix Netscaler Application Delivery Controller Firmware 10.1.121
Citrix Netscaler Application Delivery Controller Firmware 10.1.128
Citrix Netscaler Application Delivery Controller Firmware 10.1.129
Citrix Netscaler Gateway Firmware 10.1.120.1316.e
Citrix Netscaler Gateway Firmware 10.1.121
Citrix Netscaler Gateway Firmware 10.1.128
Citrix Netscaler Gateway Firmware 10.1.129
Citrix Netscaler Application Delivery Controller Firmware 10.1.126
Citrix Netscaler Application Delivery Controller Firmware 10.1.127
Citrix Netscaler Gateway Firmware 10.1.126
Citrix Netscaler Gateway Firmware 10.1.127
Citrix Netscaler Application Delivery Controller Firmware 10.1.124
Citrix Netscaler Application Delivery Controller Firmware 10.1.125
Citrix Netscaler Application Delivery Controller Firmware 10.5.51.10
Citrix Netscaler Gateway Firmware 10.1.124
Citrix Netscaler Gateway Firmware 10.1.125
Citrix Netscaler Application Delivery Controller Firmware 10.1.122
Citrix Netscaler Application Delivery Controller Firmware 10.1.123
Citrix Netscaler Gateway Firmware 10.5.50.10
NA
CVE-2014-7140
Unspecified vulnerability in the management interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.x prior to 10.1-129.11 and 10.5 prior to 10.5-50.10 allows remote malicious users to execute arbitrary code via unknown vectors.
Citrix Netscaler Application Delivery Controller Firmware 10.1
Citrix Netscaler Application Delivery Controller Firmware 10.5
Citrix Netscaler Application Delivery Controller Firmware 10.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4