CVE-2022-27509 — Open Redirect in Citrix Application Delivery Management AND Citrix Gateway

Severity

6.1MEDIUMNVD

EPSS

0.3%

top 43.94%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJul 28

Latest updateJul 29

Description

Unauthenticated redirection to a malicious website

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

▶NVDcitrix/gateway12.1 — 12.1-65.15+2

GHSA

GHSA-xgwp-wf98-3xhc: Unauthenticated redirection to a malicious website↗2022-07-29

▶