CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2213

The default configuration of the Security global settings on the Citrix NetScaler Access Gateway appliance with Enterprise Edition firmware 9.0, 8.1, and earlier specifies Allow for the Default Authorization Action option, which might allow remote authenticated users to bypass intended access restrictions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 56.8%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 6.3

References

Products affected by CVE-2009-2213

Citrix » Netscaler Access Gateway » Version: N/A

cpe:2.3:h:citrix:netscaler_access_gateway:-
Citrix » Netscaler Access Gateway Firmware » Version: 7.0

cpe:2.3:o:citrix:netscaler_access_gateway_firmware:7.0
Citrix » Netscaler Access Gateway Firmware » Version: 8.0

cpe:2.3:o:citrix:netscaler_access_gateway_firmware:8.0
Citrix » Netscaler Access Gateway Firmware » Version: 8.1

cpe:2.3:o:citrix:netscaler_access_gateway_firmware:8.1
Citrix » Netscaler Access Gateway Firmware » Version: 9.0

cpe:2.3:o:citrix:netscaler_access_gateway_firmware:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-2213

Products

Pricing

Contact Us