Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netscaler vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2017-6316
Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote malicious users to execute arbitrary shell commands as root via a CGISESSID cookie. On CloudBridge (the former name of NetScaler SD-WAN) devices, the cookie name was CAKEPHP rather than CGISESSID.
Citrix Netscaler Sd-wan
2 EDB exploits
4.3
CVSSv2
CVE-2017-5933
Citrix NetScaler ADC and NetScaler Gateway 10.5 before Build 65.11, 11.0 before Build 69.12/69.123, and 11.1 before Build 51.21 randomly generates GCM nonces, which makes it marginally easier for remote malicious users to obtain the GCM authentication key and spoof data by levera...
Citrix Netscaler Application Delivery Controller Firmware
1 Github repository
4.3
CVSSv2
CVE-2020-8300
Citrix ADC and Citrix/NetScaler Gateway prior to 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS prior to 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC ...
Citrix Netscaler Gateway
Citrix Gateway
Citrix Application Delivery Controller Firmware
1 Github repository
10
CVSSv2
CVE-2019-12986
Citrix SD-WAN 10.2.x prior to 10.2.3 and NetScaler SD-WAN 10.0.x prior to 10.0.8 have Improper Input Validation (issue 2 of 6).
Citrix Sd-wan
Citrix Netscaler Sd-wan
10
CVSSv2
CVE-2019-12988
Citrix SD-WAN 10.2.x prior to 10.2.3 and NetScaler SD-WAN 10.0.x prior to 10.0.8 have Improper Input Validation (issue 4 of 6).
Citrix Netscaler Sd-wan
Citrix Sd-wan
9
CVSSv2
CVE-2019-12991
Citrix SD-WAN 10.2.x prior to 10.2.3 and NetScaler SD-WAN 10.0.x prior to 10.0.8 have Improper Input Validation (issue 5 of 6).
Citrix Netscaler Sd-wan
Citrix Sd-wan
1 EDB exploit
5.8
CVSSv2
CVE-2021-22927
A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an malicious user to hijack a session.
Citrix Application Delivery Controller Firmware
Citrix Gateway
Citrix Netscaler Gateway
4.3
CVSSv2
CVE-2020-8245
Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 prior to 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 prior to 12.1-58.15, Citrix ADC 12.1-FIPS prior to 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 prior to 11.1-65...
Citrix Application Delivery Controller Firmware
Citrix Gateway
Citrix Netscaler Gateway
10
CVSSv2
CVE-2019-12985
Citrix SD-WAN 10.2.x prior to 10.2.3 and NetScaler SD-WAN 10.0.x prior to 10.0.8 have Improper Input Validation (issue 1 of 6).
Citrix Netscaler Sd-wan
Citrix Sd-wan
10
CVSSv2
CVE-2019-12987
Citrix SD-WAN 10.2.x prior to 10.2.3 and NetScaler SD-WAN 10.0.x prior to 10.0.8 have Improper Input Validation (issue 3 of 6).
Citrix Netscaler Sd-wan
Citrix Sd-wan
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »