CVE-2008-2528Improper Authentication in Citrix Access Gateway

CWE-287Improper Authentication5 documents4 sources
Severity
10.0CRITICALNVD
EPSS
1.3%
top 20.04%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Citrix Access GatewayCitrix ADMCitrix Hypervisor+5 more
Timeline
PublishedJun 3
Latest updateMay 1

Description

Unspecified vulnerability in Citrix Access Gateway Standard Edition 4.5.7 and earlier and Advanced Edition 4.5 HF2 and earlier allows attackers to bypass authentication and gain "access to network resources" via unspecified vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages8 packages

Patches

Patch: secunia.comPatch: support.citrix.comPatch: secunia.com

🔴Vulnerability Details

1
GHSA
GHSA-rqv8-g775-rjw3: Unspecified vulnerability in Citrix Access Gateway Standard Edition 42022-05-01

💥Exploits & PoCs

1
Exploit-DB
dvbbs 8.2 - 'login.asp' Multiple SQL Injections2008-05-29

📋Vendor Advisories

2
Citrix
CVE-2008-2528: Unspecified vulnerability in Citrix Access Gateway Standard Edition 4.5.7 and earlier and Advanced Edition 4.5 HF2 and earlier allows attackers to byp2008-06-03
Citrix
Citrix Security Bulletin CTX116930