CVE-2009-2214 — Citrix Secure Gateway vulnerability

CWE-3994 documents3 sources

Severity

5.0MEDIUMNVD

EPSS

1.8%

top 17.29%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Citrix Secure Gateway Citrix ADM Citrix Hypervisor +5 more

Timeline

PublishedJun 25

Latest updateMay 2

Description

The Secure Gateway service in Citrix Secure Gateway 3.1 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an unspecified request.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages8 packages

▶NVDcitrix/secure_gateway3.1+1

▶citrixcitrix/netscaler_gateway

▶citrixcitrix/xenserver

▶citrixcitrix/citrix_adm

▶citrixcitrix/netscaler_adc

Patches

Patch: support.citrix.com ↗Patch: www.securityfocus.com ↗Patch: www.securitytracker.com ↗

🔴Vulnerability Details

GHSA

GHSA-5jp6-4vvv-9mxv: The Secure Gateway service in Citrix Secure Gateway 3↗2022-05-02

▶

📋Vendor Advisories

Citrix

CVE-2009-2214: The Secure Gateway service in Citrix Secure Gateway 3.1 and earlier allows remote attackers to cause a denial of service (CPU consumption) via an unsp↗2009-06-25

▶

Citrix

Citrix Security Bulletin CTX121172↗

▶