) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
Search Results (Refine Search)
Search Parameters:
- Keyword (text search): cpe:2.3:a:citrix:gateway:12.1-64.17:*:*:*:*:*:*:*
- CPE Name Search: true
There are 7 matching records.
Displaying matches 1 through 7.
| Vuln ID | Summary | CVSS Severity |
|---|---|---|
| CVE-2023-24488 |
Cross site scripting vulnerability in Citrix ADC and Citrix Gateway in allows and attacker to perform cross site scripting Published: July 10, 2023; 5:15:10 PM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0:(not available) |
| CVE-2023-24487 |
Arbitrary file read in Citrix ADC and Citrix Gateway Published: July 10, 2023; 5:15:10 PM -0400 |
V4.0:(not available) V3.1: 7.5 HIGH V2.0:(not available) |
| CVE-2019-18177 |
In certain Citrix products, information disclosure can be achieved by an authenticated VPN user when there is a configured SSL VPN endpoint. This affects Citrix ADC and Citrix Gateway 13.0-58.30 and later releases before the CTX276688 update. Published: December 26, 2022; 4:15:10 PM -0500 |
V4.0:(not available) V3.1: 6.5 MEDIUM V2.0:(not available) |
| CVE-2022-27516 |
User login brute force protection functionality bypass Published: November 08, 2022; 5:15:13 PM -0500 |
V4.0:(not available) V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2022-27513 |
Remote desktop takeover via phishing Published: November 08, 2022; 5:15:13 PM -0500 |
V4.0:(not available) V3.1: 9.6 CRITICAL V2.0:(not available) |
| CVE-2022-27510 |
Unauthorized access to Gateway user capabilities Published: November 08, 2022; 5:15:13 PM -0500 |
V4.0:(not available) V3.1: 9.8 CRITICAL V2.0:(not available) |
| CVE-2022-27509 |
Unauthenticated redirection to a malicious website Published: July 28, 2022; 10:15:08 AM -0400 |
V4.0:(not available) V3.1: 6.1 MEDIUM V2.0:(not available) |