Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netscaler vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-2838
Cross-site request forgery (CSRF) vulnerability in Nitro API in Citrix NetScaler prior to 10.5 build 52.3nc allows remote malicious users to hijack the authentication of administrators for requests that execute arbitrary commands as nsroot via shell metacharacters in the file_nam...
Citrix Netscaler 10.5
1 EDB exploit
NA
CVE-2015-2839
The Nitro API in Citrix NetScaler prior to 10.5 build 52.3nc uses an incorrect Content-Type when returning an error message, which allows remote malicious users to conduct cross-site scripting (XSS) attacks via the file_name JSON member in params/xen_hotfix/0 to nitro/v1/config/x...
Citrix Netscaler 10.5
NA
CVE-2015-2840
Cross-site scripting (XSS) vulnerability in help/rt/large_search.html in Citrix NetScaler prior to 10.5 build 52.3nc allows remote malicious users to inject arbitrary web script or HTML via the searchQuery parameter.
Citrix Netscaler 10.5
NA
CVE-2015-2841
Citrix NetScaler AppFirewall, as used in NetScaler 10.5, allows remote malicious users to bypass intended firewall restrictions via a crafted Content-Type header, as demonstrated by the application/octet-stream and text/xml Content-Types.
Citrix Netscaler 10.5
1 EDB exploit
8.8
CVSSv3
CVE-2018-6186
Citrix NetScaler VPX through NS12.0 53.13.nc allows an SSRF attack via the /rapi/read_url URI by an authenticated attacker who has a webapp account. The attacker can gain access to the nsroot account, and execute remote commands with root privileges.
Citrix Netscaler 12.0
7.2
CVSSv3
CVE-2017-14602
A vulnerability has been identified in the management interface of Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.1 before build 135.18, 10.5 before build 66.9, 10.5e before build 60.7010.e, 11.0 before build 70.16, 11.1 before build 55.13, and 12...
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 10.1
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 10.5e
Citrix Application Delivery Controller Firmware 10.5e
Citrix Application Delivery Controller Firmware 10.5
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 10.1
Citrix Netscaler Gateway Firmware 11.0
Citrix Application Delivery Controller Firmware 11.0
Citrix Application Delivery Controller Firmware 11.1
Citrix Netscaler Gateway Firmware 10.5
4.8
CVSSv3
CVE-2018-18517
Citrix NetScaler Gateway 10.5.x prior to 10.5.69.003, 11.1.x prior to 11.1.59.004, 12.0.x prior to 12.0.58.7, and 12.1.x prior to 12.1.49.1 has XSS.
Citrix Netscaler Gateway Firmware
9.8
CVSSv3
CVE-2017-6316
Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote malicious users to execute arbitrary shell commands as root via a CGISESSID cookie. On CloudBridge (the former name of NetScaler SD-WAN) devices, the cookie name was CAKEPHP rather than CGISESSID.
Citrix Netscaler Sd-wan
2 EDB exploits
5.9
CVSSv3
CVE-2017-17382
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.5 before build 67.13, 11.0 before build 71.22, 11.1 before build 56.19, and 12.0 before build 53.22 might allow remote malicious users to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA...
Citrix Application Delivery Controller Firmware 10.5
Citrix Application Delivery Controller Firmware 11.1
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 11.0
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Gateway Firmware 11.0
Citrix Netscaler Gateway Firmware 12.0
5.9
CVSSv3
CVE-2017-17549
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.5 before build 67.13, 11.0 before build 71.22, 11.1 before build 56.19, and 12.0 before build 53.22 allow remote malicious users to obtain sensitive information from the backend client TLS handshake b...
Citrix Application Delivery Controller Firmware 10.5
Citrix Application Delivery Controller Firmware 11.0
Citrix Application Delivery Controller Firmware 11.1
Citrix Application Delivery Controller Firmware 12.0
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 11.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »