Published: 26/12/2022 Updated: 05/01/2023

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 0

Subscribe to Application Delivery Controller Firmware

In certain Citrix products, information disclosure can be achieved by an authenticated VPN user when there is a configured SSL VPN endpoint. This affects Citrix ADC and Citrix Gateway 13.0-58.30 and later releases before the CTX276688 update.

Vulnerable Product	Search on Vulmon	Subscribe to Product
citrix application_delivery_controller_firmware
citrix gateway

Description of Problem Multiple vulnerabilities have been discovered in Citrix ADC (formerly known as NetScaler ADC), Citrix Gateway (formerly known as NetScaler Gateway) and Citrix SD-WAN WANOP appliance models 4000-WO, 4100-WO, 5000-WO, and 5100-WO These vulnerabilities, if exploited, could result in a number of security issues i ...

NVD-CWE-noinfo https://support.citrix.com/article/CTX276688/citrix-application-delivery-controller-citrix-gateway-and-citrix-sdwan-wanop-appliance-security-update https://nvd.nist.gov https://support.citrix.com/article/CTX276688?mkt_tok=eyJpIjoiWW1Nd1pUWXpOR1pqTUdFMSIsInQiOiJcLzVva1wvTkxpZ1VaYXFMbDlRbU5Qa2sxTm5cLzh6VHN0RHNwMTRUSGJuekxTM3hSb3VYa3lNaG9kUzRudkJwZDJQb1AyeXBpQ1lNaUpwbDZnN2VrcndlWUh5QmF6ZmhaOTdcLzRJbE9cL0Q3bGZTVW5BZ2l4dXNuc0VUS2VVMklodmxNIn0%3D

CVE-2019-18177

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect