Citrix: >> Gateway >> 12.1-61.18 Security Vulnerabilities
Arbitrary file read in Citrix ADC and Citrix Gateway
CVSS Score
6.3
EPSS Score
0.224
Published
2023-07-10
Cross site scripting vulnerability in Citrix ADC and Citrix Gateway in allows and attacker to perform cross site scripting
CVSS Score
6.1
EPSS Score
0.914
Published
2023-07-10
Authenticated denial of service
CVSS Score
6.5
EPSS Score
0.006
Published
2023-01-26
In certain Citrix products, information disclosure can be achieved by an authenticated VPN user when there is a configured SSL VPN endpoint. This affects Citrix ADC and Citrix Gateway 13.0-58.30 and later releases before the CTX276688 update.
CVSS Score
6.5
EPSS Score
0.002
Published
2022-12-26
Unauthorized access to Gateway user capabilities
CVSS Score
9.8
EPSS Score
0.007
Published
2022-11-08
Remote desktop takeover via phishing
CVSS Score
8.3
EPSS Score
0.002
Published
2022-11-08
User login brute force protection functionality bypass
CVSS Score
5.3
EPSS Score
0.0
Published
2022-11-08
Unauthenticated redirection to a malicious website
CVSS Score
6.1
EPSS Score
0.003
Published
2022-07-28
A unauthenticated denial of service vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22 and 11.1-65.23 when configured as a VPN (Gateway) or AAA virtual server could allow an attacker to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication.
CVSS Score
7.5
EPSS Score
0.007
Published
2021-12-07
An uncontrolled resource consumption vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22 and 11.1-65.23 that could allow an attacker with access to NSIP or SNIP with management interface access to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication.
CVSS Score
7.5
EPSS Score
0.005
Published
2021-12-07
Page 1