Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-22919
A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the limi...
Citrix Application Delivery Controller Firmware
Citrix Gateway
Citrix Netscaler Gateway
Citrix Sd-wan Wanop
5.8
CVSSv2
CVE-2021-22927
A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an malicious user to hijack a session.
Citrix Application Delivery Controller Firmware
Citrix Gateway
Citrix Netscaler Gateway
5.6
CVSSv2
CVE-2021-28692
inappropriate x86 IOMMU timeout detection / handling IOMMUs process commands issued to them in parallel with the operation of the CPU(s) issuing such commands. In the current implementation in Xen, asynchronous notification of the completion of such commands is not used. Instead,...
Xen Xen
3.3
CVSSv2
CVE-2020-8299
Citrix ADC and Citrix/NetScaler Gateway 13.0 prior to 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS prior to 12.1-55.238, and Citrix SD-WAN WANOP Edition prior to 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way o...
Citrix Gateway
Citrix Netscaler Gateway
Citrix Application Delivery Controller Firmware
Citrix Sd-wan Wanop
4.3
CVSSv2
CVE-2020-8300
Citrix ADC and Citrix/NetScaler Gateway prior to 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS prior to 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC ...
Citrix Netscaler Gateway
Citrix Gateway
Citrix Application Delivery Controller Firmware
1 Github repository
5
CVSSv2
CVE-2021-22914
Citrix Cloud Connector prior to 6.31.0.62192 suffers from insecure storage of sensitive information due to sensitive information being stored in the Citrix Cloud Connector installation log files. Such information could be used by an malicious actor to access a Citrix Cloud enviro...
Citrix Cloud Connector
2.1
CVSSv2
CVE-2021-0089
Observable response discrepancy in some Intel(R) Processors may allow an authorized user to potentially enable information disclosure via local access.
Debian Debian Linux 10.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
Intel Pentium Processors Firmware -
Intel Celeron Processors Firmware -
Intel Xeon Processors Firmware -
Intel Core Processors Firmware -
Intel Itanium Processors Firmware -
1 Github repository
2.1
CVSSv2
CVE-2021-26313
Potential speculative code store bypass in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution of overwritten instructions, may cause an incorrect speculation and could result in data leakage.
Xen Xen
Arm Cortex-a72 -
Broadcom Bcm2711 -
Intel Core I7-7700k -
Intel Xeon Silver 4214 -
Intel Core I9-9900k -
Intel Core I7-10700k -
Debian Debian Linux 10.0
7.5
CVSSv2
CVE-2021-22891
A missing authorization vulnerability exists in Citrix ShareFile Storage Zones Controller prior to 5.7.3, 5.8.3, 5.9.3, 5.10.1 and 5.11.18 may allow unauthenticated remote compromise of the Storage Zones Controller.
Citrix Sharefile Storagezones Controller
7.2
CVSSv2
CVE-2021-22907
An improper access control vulnerability exists in Citrix Workspace App for Windows potentially allows privilege escalation in CR versions before 2105 and 1912 LTSR prior to CU4.
Citrix Workspace
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4671
unauthorized
CVE-2024-4776
CVE-2024-3407
CVE-2024-26026
CVE-2024-32888
wireless
CVE-2024-4656
template injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »