CVE-2024-5491Improper Restriction of Operations within the Bounds of a Memory Buffer in ADC

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-601Open Redirect3 documents3 sources
Severity
7.2HIGHNVD
EPSS
0.4%
top 40.07%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
8
Netscaler ADCNetscaler GatewayCitrix Netscaler Application Delivery Controller+5 more
Timeline
PublishedJul 10

Description

Denial of Service in NetScaler ADC and NetScaler Gateway in NetScaler

CVSS vector

CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:L/VA:H/SC:N/SI:N/SA:N

Affected Packages9 packages

NVDcitrix/netscaler_gateway12.113.0-92.31+2
CVEListV5netscaler/netscaler_gateway14.125.53+2
CVEListV5netscaler/netscaler_adc14.125.53+5

🔴Vulnerability Details

1
GHSA
GHSA-p959-c7xj-w3cr: Denial of Service in NetScaler ADC and NetScaler Gateway in NetScaler2024-07-10

📋Vendor Advisories

1
Citrix
NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2024-5491 and CVE-2024-54922024-07-09