Netscaler_gateway_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Netscaler_gateway_firmware
(Citrix)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	31

Date	Id	Summary	Products	Score	Patch	Annotated
2020-07-10	CVE-2020-8195	Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.	Application_delivery_controller_firmware, Gateway_firmware, Gateway_plug\-In_for_linux, Netscaler_gateway_firmware, Sd\-Wan_wanop	6.5
2020-07-10	CVE-2020-8196	Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.	Application_delivery_controller_firmware, Gateway_firmware, Netscaler_gateway_firmware, Sd\-Wan_wanop	4.3
2019-12-27	CVE-2019-19781	An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.	Application_delivery_controller_firmware, Gateway_firmware, Netscaler_gateway_firmware	9.8
2020-07-10	CVE-2020-8187	Improper input validation in Citrix ADC and Citrix Gateway versions before 11.1-63.9 and 12.0-62.10 allows unauthenticated users to perform a denial of service attack.	Application_delivery_controller_firmware, Netscaler_gateway_firmware	7.5
2020-07-10	CVE-2020-8190	Incorrect file permissions in Citrix ADC and Citrix Gateway before versions 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 allows privilege escalation.	Application_delivery_controller_firmware, Gateway_firmware, Netscaler_gateway_firmware	7.5
2020-07-10	CVE-2020-8191	Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows reflected Cross Site Scripting (XSS).	Application_delivery_controller_firmware, Gateway_firmware, Netscaler_gateway_firmware, Sd\-Wan_wanop	6.1
2020-07-10	CVE-2020-8194	Reflected code injection in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows the modification of a file download.	Application_delivery_controller_firmware, Gateway_firmware, Netscaler_gateway_firmware, Sd\-Wan_wanop	6.5
2020-07-10	CVE-2020-8197	Privilege escalation vulnerability on Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 allows a low privileged user with management access to execute arbitrary commands.	Application_delivery_controller_firmware, Gateway_firmware, Netscaler_gateway_firmware	8.8
2020-07-10	CVE-2020-8198	Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in Stored Cross-Site Scripting (XSS).	Application_delivery_controller_firmware, Gateway_firmware, Netscaler_gateway_firmware, Sd\-Wan_wanop	6.1
2019-10-21	CVE-2019-18225	An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway before 10.5 build 70.8, 11.x before 11.1 build 63.9, 12.0 before build 62.10, 12.1 before build 54.16, and 13.0 before build 41.28. An attacker with management-interface access can bypass authentication to obtain appliance administrative access. These products formerly used the NetScaler brand name.	Application_delivery_controller_firmware, Gateway_firmware, Netscaler_gateway_firmware	N/A