CVE-2018-6808Sensitive Information Exposure in Citrix Netscaler Application Delivery Controller Firmware

CWE-200Sensitive Information Exposure3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 45.36%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Citrix Netscaler Application Delivery Controller FirmwareCitrix Netscaler Gateway FirmwareCitrix ADM+6 more
Timeline
PublishedMar 6
Latest updateMay 14

Description

NetScaler ADC 10.5, 11.0, 11.1, and 12.0, and NetScaler Gateway 10.5, 11.0, 11.1, and 12.0 allow remote attackers to download arbitrary files on the target system.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages9 packages

🔴Vulnerability Details

1
GHSA
GHSA-f34h-gj99-j7gv: NetScaler ADC 102022-05-14

📋Vendor Advisories

1
Citrix
Citrix Security Bulletin CTX232161