cbcvebase.
CVE-2020-8300
published 2021-06-16

CVE-2020-8300: Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access…

PriorityP338medium6.5CVSS 3.1
AVNACLPRNUIRSUCNIHAN
EPSS
3.01%
85.7th percentile
Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or Citrix Gateway must be configured as a SAML SP or a SAML IdP for this to be possible.

Affected

17 ranges
VendorProductVersion rangeFixed in
citrixapplication_delivery_controller_firmware>= 11.1 < 11.1-65.2011.1-65.20
citrixapplication_delivery_controller_firmware>= 12.1 < 12.1-62.2312.1-62.23
citrixapplication_delivery_controller_firmware>= 12.1 < 12.1-55.23812.1-55.238
citrixapplication_delivery_controller_firmware>= 13.0 < 13.0-82.4113.0-82.41
citrixcitrix_adc
citrixcitrix_application_delivery_controller
citrixcitrix_gateway
citrixcitrix_sd-wan_wanop
citrixcitrix_workspace_app
citrixgateway>= 12.1 < 12.1-62.2312.1-62.23
citrixgateway>= 13.0 < 13.0-82.4113.0-82.41
citrixnetscaler_adc
citrixnetscaler_adc_gateway
citrixnetscaler_gateway
citrixnetscaler_gateway>= 11.1 < 11.1-65.2011.1-65.20
citrixworkspace
citrixxenserver

CVSS provenance

nvdv3.16.5MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N
nvdv2.04.3MEDIUMAV:N/AC:M/Au:N/C:N/I:P/A:N
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.