Vulnerability Details CVE-2020-8247
Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-WAN WANOP 11.1 before 11.1.2a, Citrix SD-WAN WANOP 11.0 before 11.0.3f, Citrix SD-WAN WANOP 10.2 before 10.2.7b are vulnerable to escalation of privileges on the management interface.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 56.9%
CVSS Severity
CVSS v3 Score 8.8
CVSS v2 Score 6.5
References
Products affected by CVE-2020-8247
-
cpe:2.3:a:citrix:gateway:11.1
-
cpe:2.3:a:citrix:gateway:13.0
-
cpe:2.3:a:citrix:gateway:13.0-58.30
-
cpe:2.3:a:citrix:netscaler_gateway:12.1
-
cpe:2.3:h:citrix:application_delivery_controller:-
-
cpe:2.3:h:citrix:sd-wan_wanop:-
-
cpe:2.3:o:citrix:application_delivery_controller_firmware:11.1
-
cpe:2.3:o:citrix:application_delivery_controller_firmware:11.1-64.14
-
cpe:2.3:o:citrix:application_delivery_controller_firmware:12.1
-
cpe:2.3:o:citrix:application_delivery_controller_firmware:12.1-55.238
-
cpe:2.3:o:citrix:application_delivery_controller_firmware:12.1-55.291
-
cpe:2.3:o:citrix:application_delivery_controller_firmware:12.1-57.18
-
cpe:2.3:o:citrix:application_delivery_controller_firmware:13.0
-
cpe:2.3:o:citrix:application_delivery_controller_firmware:13.0-58.30
-
cpe:2.3:o:citrix:sd-wan_wanop:10.2
-
cpe:2.3:o:citrix:sd-wan_wanop:10.2.7
-
cpe:2.3:o:citrix:sd-wan_wanop:11.0
-
cpe:2.3:o:citrix:sd-wan_wanop:11.0.3d
-
cpe:2.3:o:citrix:sd-wan_wanop:11.1
-
cpe:2.3:o:citrix:sd-wan_wanop:11.1.1a
-
cpe:2.3:o:citrix:sd-wan_wanop:11.2