Citrix NetScaler Gateway 12.1 before build 50.31, 12.0 before build 60.9, 11.1 before build 60.14, 11.0 before build 72.17, and 10.5 before build 69.5 and Application Delivery Controller (ADC) 12.1 before build 50.31, 12.0 before build 60.9, 11.1 before build 60.14, 11.0 before build 72.17, and 10.5 before build 69.5 allow remote malicious users to obtain sensitive plaintext information because of a TLS Padding Oracle Vulnerability when CBC-based cipher suites are enabled.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
citrix netscaler_gateway_firmware 11.1 |
||
citrix netscaler_gateway_firmware 12.0 |
||
citrix netscaler_gateway_firmware 11.0 |
||
citrix netscaler_gateway_firmware 10.5 |
||
citrix netscaler_gateway_firmware 12.1 |
||
citrix netscaler_application_delivery_controller_firmware 11.1 |
||
citrix netscaler_application_delivery_controller_firmware 12.0 |
||
citrix netscaler_application_delivery_controller_firmware 11.0 |
||
citrix netscaler_application_delivery_controller_firmware 10.5 |
||
citrix netscaler_application_delivery_controller_firmware 12.1 |