Improper input validation in Citrix ADC and Citrix Gateway versions prior to 11.1-63.9 and 12.0-62.10 allows unauthenticated users to perform a denial of service attack.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
citrix application_delivery_controller_firmware |
||
citrix netscaler_gateway_firmware |
Eleven flaws cleaned up including one that may be exploited to sling malware downloads Australian PM says nation under serious state-run 'cyber attack' – Microsoft, Citrix, Telerik UI bugs 'exploited'
Citrix has issued patches for 11 CVE-listed security vulnerabilities in its various networking products. The bundle includes fixes for one code injection bug, three information disclosure flaws, three elevation of privilege bugs, two cross-site scripting vulnerabilities, one denial-of-service hole, and one authorization-bypass flaw. Affected gear includes the Citrix Application Delivery Controller (ADC), Citrix Gateway, and Citrix SD-WAN WANOP. So far there have been no reports of any of the bug...