MEDIUM🇵🇱 Wersja polska

CVE-2023-24487

CVSS 6.3v3.1pub. 2023-07-10upd. 2024-11-21

Arbitrary file read in Citrix ADC and Citrix Gateway 

CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
  • Citrix Application Delivery Controller

    APP
    Citrix
    12.1 – 12.1-55.296 (bez)12.1 – 12.1-65.35 (bez)13.0 – 13.0-90.11 (bez)13.1 – 13.1-37.150 (bez)13.1 – 13.1-45.61 (bez)
  • Citrix Gateway

    APP
    Citrix
    12.1 – 12.1-65.35 (bez)13.0 – 13.0-90.11 (bez)13.1 – 13.1-45.61 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2022-27518CRITICAL9.8⚠ KEVten sam produkt

Unauthenticated remote arbitrary code execution

CVE-2019-19781CRITICAL9.8⚠ KEVten sam produkt

An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, an...

CVE-2022-27510CRITICAL9.8ten sam produkt

Unauthorized access to Gateway user capabilities

CVE-2019-18225CRITICAL9.8ten sam produkt

An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway before 10.5 build 70.8, 11...

CVE-2022-27508HIGH7.5ten sam produkt

Unauthenticated denial of service