CVE-2016-2072Citrix Netscaler vulnerability

CWE-2545 documents4 sources
Severity
6.1MEDIUMNVD
EPSS
0.2%
top 53.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Citrix NetscalerCitrix ADMCitrix Hypervisor+6 more
Timeline
PublishedFeb 17
Latest updateMay 17

Description

The Administrative Web Interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 11.x before 11.0 Build 64.34, 10.5 before 10.5 Build 59.13, 10.5.e before Build 59.1305.e, and 10.1 allows remote attackers to conduct clickjacking attacks via unspecified vectors.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

Affected Packages9 packages

NVDcitrix/netscaler4 versions+3

🔴Vulnerability Details

1
GHSA
GHSA-87qj-872v-w6wg: The Administrative Web Interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 112022-05-17

📋Vendor Advisories

2
Citrix
CVE-2016-2072: The Administrative Web Interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 11.x before 11.0 Build 64.34, 10.5 be2016-02-17
Citrix
Citrix Security Bulletin CTX206001

💬Community

1
Bugzilla
CVE-2016-2141 JGroups: Authorization bypass2016-03-02