CVE-2022-27512
published 2022-06-16CVE-2022-27512: Temporary disruption of the ADM license service. The impact of this includes preventing new licenses from being issued or renewed by Citrix ADM.
PriorityP423medium5.3CVSS 3.1
AVNACLPRNUINSUCNINAL
EPSS
0.91%
55.4th percentile
Temporary disruption of the ADM license service. The impact of this includes preventing new licenses from being issued or renewed by Citrix ADM.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| citrix | application_delivery_management | < 13.0-85.19 | 13.0-85.19 |
| citrix | application_delivery_management | >= 13.1 < 13.1-21.53 | 13.1-21.53 |
| citrix | citrix_adm | — | — |
| citrix | citrix_application_delivery_management | — | — |
| citrix | citrix_application_delivery_management | >= unspecified < 13.1-21.53 | 13.1-21.53 |
| citrix | citrix_application_delivery_management | >= unspecified < 13.0-85.19 | 13.0-85.19 |
| citrix | xenserver | — | — |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Citrix
Citrix Application Delivery Management Security Bulletin for CVE-2022-27511 and CVE-2022-27512
vendor_citrix·2022-06-27·CVSS 8.1
CVE-2022-27511 [HIGH] CWE-284 Citrix Application Delivery Management Security Bulletin for CVE-2022-27511 and CVE-2022-27512
Citrix Application Delivery Management Security Bulletin for CVE-2022-27511 and CVE-2022-27512
CWE Pre-conditions CVE-2022-27511 Corruption of the system by a remote, unauthenticated user potentially leading to the reset of the administrator password CWE-284: Improper Access Control Access to ADM IP CVE-2022-27512 Temporary disruption of the ADM license service CWE-664: Improper Control of a Resource Through its Lifetime Access to ADM IP All supported versions of Citrix ADM server and Citrix ADM agent are affected by this vulnerability. The following versions of Citrix ADM are in support: Citrix ADM 13.1 and Citrix ADM 13.0. The affected builds are: Citrix ADM 13.1 before 13.1-21.53 Citrix ADM 13.0 before 13.0-85.19 Please note that Citrix ADM 12.1 has now reached End of Life and is no lo
Citrix
CVE-2022-27512: Temporary disruption of the ADM license service. The impact of this includes preventing new licenses from being issued or renewed by Citrix ADM.
vendor_citrix·2022-06-16·CVSS 5.3
CVE-2022-27512 [MEDIUM] CWE-664 CVE-2022-27512: Temporary disruption of the ADM license service. The impact of this includes preventing new licenses from being issued or renewed by Citrix ADM.
CVE-2022-27512: Temporary disruption of the ADM license service. The impact of this includes preventing new licenses from being issued or renewed by Citrix ADM.
GHSA
GHSA-jgxv-3vwf-pphp: Temporary disruption of the ADM license service
ghsa_unreviewed·2022-06-17
CVE-2022-27512 [MEDIUM] CWE-416 GHSA-jgxv-3vwf-pphp: Temporary disruption of the ADM license service
Temporary disruption of the ADM license service. The impact of this includes preventing new licenses from being issued or renewed by Citrix ADM.
No detection rules found.
No public exploits indexed.
Tenable
Cybersecurity Snapshot: 6 Things That Matter Right Now
blogs_tenable·2022-07-01
Cybersecurity Snapshot: 6 Things That Matter Right Now
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
Tenable
CVE-2022-27511, CVE-2022-27512: Patches for Two Citrix Application Delivery Management Vulnerabilities
blogs_tenable·2022-06-17·CVSS 8.1
[HIGH] CVE-2022-27511, CVE-2022-27512: Patches for Two Citrix Application Delivery Management Vulnerabilities
## Cloud Exposure
Tenable Cloud Security (CNAPP) Request a demo
Tenable Cloud Vulnerability Management Request a demo
Tenable CIEM Request a demo
Secure your cloud
## Vulnerability Exposure
Tenable Vulnerability Management Try for free
Tenable Security Center Request a demo
Tenable Web App Scanning Try for free
Tenable Patch Management Request a demo
Tenable Enclave Security Request a demo
Tenable Attack Surface Management Request a demo
Tenable Nessus Try for free
## AI Exposure
Tenable AI Exposure Request a demo
## OT/IoT Exposure
Tenable OT Security Request a demo
## Identity Exposure
Tenable Identity Exposure Request a demo
## Business needs
Active Directory
AI Security Posture Management (AI-SPM)
AWS security
Azure security
Cloud Security Posture Man
2022-06-16
Published