Search Results (Refine Search)
- CPE Product Version: cpe:/h:citrix:netscaler_access_gateway:-:-:enterprise
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2014-4347 |
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway (formerly Access Gateway Enterprise Edition) before 9.3-62.4 and 10.x before 10.1-126.12 allows attackers to obtain sensitive information via vectors related to a cookie. Published: July 16, 2014; 10:19:04 AM -0400 |
V3.x:(not available) V2.0: 5.0 MEDIUM |
CVE-2014-4346 |
Cross-site scripting (XSS) vulnerability in administration user interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway (formerly Access Gateway Enterprise Edition) 10.1 before 10.1-126.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: July 16, 2014; 10:19:03 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2014-1899 |
Cross-site scripting (XSS) vulnerability in Citrix NetScaler Gateway (formerly Citrix Access Gateway Enterprise Edition) 9.x before 9.3.66.5 and 10.x before 10.1.123.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. Published: May 02, 2014; 10:55:05 AM -0400 |
V3.x:(not available) V2.0: 4.3 MEDIUM |
CVE-2014-2882 |
Unspecified vulnerability in the management GUI in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unspecified impact and vectors, related to certificate validation. Published: May 01, 2014; 1:28:36 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-2014-2881 |
Unspecified vulnerability in the Diffie-Hellman key agreement implementation in the management GUI Java applet in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 9.3-66.5 and 10.x before 10.1-122.17 has unknown impact and vectors. Published: May 01, 2014; 1:28:36 PM -0400 |
V3.x:(not available) V2.0: 10.0 HIGH |
CVE-2013-2767 |
Unspecified vulnerability in Citrix NetScaler Access Gateway Enterprise Edition (AGEE) before 9.3.62.4 and 10.x through 10.0.74.4, and NetScaler AGEE Common Criteria build before 9.3.53.6, allows remote attackers to bypass intended intranet access restrictions via unknown vectors. Published: April 25, 2013; 4:55:10 PM -0400 |
V3.x:(not available) V2.0: 5.4 MEDIUM |
CVE-2009-2213 |
The default configuration of the Security global settings on the Citrix NetScaler Access Gateway appliance with Enterprise Edition firmware 9.0, 8.1, and earlier specifies Allow for the Default Authorization Action option, which might allow remote authenticated users to bypass intended access restrictions. Published: June 25, 2009; 7:14:15 PM -0400 |
V3.1: 6.5 MEDIUM V2.0: 6.3 MEDIUM |