cbcvebase.
CVE-2022-27516
published 2022-11-08

CVE-2022-27516: User login brute force protection functionality bypass

PriorityP343critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
0.60%
44.2th percentile
User login brute force protection functionality bypass

Affected

10 ranges
VendorProductVersion rangeFixed in
citrixapplication_delivery_controller_firmware>= 12.1 < 12.1-65.2112.1-65.21
citrixapplication_delivery_controller_firmware>= 12.1 < 12.1-55.28912.1-55.289
citrixapplication_delivery_controller_firmware>= 13.0 < 13.0-88.1213.0-88.12
citrixapplication_delivery_controller_firmware>= 13.1 < 13.1-33.4713.1-33.47
citrixcitrix_adc
citrixcitrix_gateway
citrixgateway>= 12.1 < 12.1-65.2112.1-65.21
citrixgateway>= 13.0 < 13.0-88.1213.0-88.12
citrixgateway>= 13.1 < 13.1-33.4713.1-33.47
citrixxenserver
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.