Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
citrix vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-24488
Cross site scripting vulnerability in Citrix ADC and Citrix Gateway? in allows and malicious user to perform cross site scripting
Citrix Gateway
Citrix Application Delivery Controller
10 Github repositories
7.8
CVSSv3
CVE-2023-24483
A vulnerability has been identified that, if exploited, could result in a local user elevating their privilege level to NT AUTHORITY\SYSTEM on a Citrix Virtual Apps and Desktops Windows VDA.
Citrix Virtual Apps And Desktops
Citrix Virtual Apps And Desktops 1912
Citrix Virtual Apps And Desktops 2203
5.5
CVSSv3
CVE-2023-24484
A malicious user can cause log files to be written to a directory that they do not have permission to write to.
Citrix Workspace 1912
Citrix Workspace 2203.1
Citrix Workspace
7.8
CVSSv3
CVE-2023-24485
Vulnerabilities have been identified that, collectively, allow a standard Windows user to perform operations as SYSTEM on the computer running Citrix Workspace app.
Citrix Workspace 1912
Citrix Workspace 2203.1
Citrix Workspace
7.5
CVSSv3
CVE-2022-27508
Unauthenticated denial of service
Citrix Gateway 12.1-64.16
Citrix Application Delivery Controller 12.1-64.16
6.5
CVSSv3
CVE-2022-27507
Authenticated denial of service
Citrix Gateway
Citrix Application Delivery Controller
6.5
CVSSv3
CVE-2019-18177
In certain Citrix products, information disclosure can be achieved by an authenticated VPN user when there is a configured SSL VPN endpoint. This affects Citrix ADC and Citrix Gateway 13.0-58.30 and later releases before the CTX276688 update.
Citrix Application Delivery Controller Firmware
Citrix Gateway
9.8
CVSSv3
CVE-2022-27518
Unauthenticated remote arbitrary code execution
Citrix Application Delivery Controller Firmware
Citrix Gateway Firmware
3 Github repositories
2 Articles
9.8
CVSSv3
CVE-2022-27510
Unauthorized access to Gateway user capabilities
Citrix Gateway
Citrix Application Delivery Controller Firmware
2 Github repositories
1 Article
9.6
CVSSv3
CVE-2022-27513
Remote desktop takeover via phishing
Citrix Gateway
Citrix Application Delivery Controller Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »