Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix sd-wan vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-8187
Improper input validation in Citrix ADC and Citrix Gateway versions prior to 11.1-63.9 and 12.0-62.10 allows unauthenticated users to perform a denial of service attack.
Citrix Application Delivery Controller Firmware
Citrix Netscaler Gateway Firmware
1 Article
4.3
CVSSv2
CVE-2020-8198
Improper input validation in Citrix ADC and Citrix Gateway versions prior to 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions prior to 11.1.1a, 11.0.3d and 10.2.7 resulting in Stored Cross-Site Scripting (XSS).
Citrix Application Delivery Controller Firmware
Citrix Netscaler Gateway Firmware
Citrix Gateway Firmware
Citrix Sd-wan Wanop
2 Articles
4
CVSSv2
CVE-2020-8196
Improper access control in Citrix ADC and Citrix Gateway versions prior to 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions prior to 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.
Citrix Application Delivery Controller Firmware
Citrix Netscaler Gateway Firmware
Citrix Gateway Firmware
Citrix Sd-wan Wanop
2 Github repositories
2 Articles
4
CVSSv2
CVE-2020-8195
Improper input validation in Citrix ADC and Citrix Gateway versions prior to 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions prior to 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.
Citrix Application Delivery Controller Firmware
Citrix Netscaler Gateway Firmware
Citrix Gateway Firmware
Citrix Sd-wan Wanop
Citrix Gateway Plug-in For Linux
2 Github repositories
2 Articles
9
CVSSv2
CVE-2017-14602
A vulnerability has been identified in the management interface of Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.1 before build 135.18, 10.5 before build 66.9, 10.5e before build 60.7010.e, 11.0 before build 70.16, 11.1 before build 55.13, and 12...
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 10.1
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 10.5e
Citrix Application Delivery Controller Firmware 10.5e
Citrix Application Delivery Controller Firmware 10.5
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 10.1
Citrix Netscaler Gateway Firmware 11.0
Citrix Application Delivery Controller Firmware 11.0
Citrix Application Delivery Controller Firmware 11.1
Citrix Netscaler Gateway Firmware 10.5
7.5
CVSSv2
CVE-2019-19781
An issue exists in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.
Citrix Application Delivery Controller Firmware 10.5
Citrix Application Delivery Controller Firmware 11.1
Citrix Application Delivery Controller Firmware 12.0
Citrix Application Delivery Controller Firmware 12.1
Citrix Application Delivery Controller Firmware 13.0
Citrix Netscaler Gateway Firmware 10.5
Citrix Netscaler Gateway Firmware 11.1
Citrix Netscaler Gateway Firmware 12.0
Citrix Netscaler Gateway Firmware 12.1
Citrix Gateway Firmware 13.0
2 Metasploit modules
63 Github repositories
21 Articles
4.6
CVSSv2
CVE-2020-8199
Improper access control in Citrix ADC Gateway Linux client versions prior to 1.0.0.137 results in local privilege escalation to root.
Citrix Gateway Plug-in For Linux
1 Article
5
CVSSv2
CVE-2016-4793
The clientIp function in CakePHP 3.2.4 and previous versions allows remote malicious users to spoof their IP via the CLIENT-IP HTTP header.
Cakephp Cakephp
1 EDB exploit
6.8
CVSSv2
CVE-2012-2104
cgi-bin/munin-cgi-graph in Munin 2.x writes data to a log file without sanitizing non-printable characters, which might allow user-assisted remote malicious users to inject terminal emulator escape sequences and execute arbitrary commands or delete arbitrary files via a crafted H...
Munin-monitoring Munin 2.0
Munin-monitoring Munin 2.1
1 EDB exploit
NA
CVE-2024-2049
Server-Side Request Forgery (SSRF) in Citrix SD-WAN Standard/Premium Editions on or after 11.4.0 and prior to 11.4.4.46 allows an malicious user to disclose limited information from the appliance via Access to management IP.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »