Citrix Sd-Wan vulnerabilities

CVE-2024-2049 [MEDIUM] CWE-918 Citrix SDWAN Security Bulletin for CVE-2024-2049 Citrix SDWAN Security Bulletin for CVE-2024-2049 Pre-requisites CWE CVE-2024-2049 If exploited, an attacker may disclose limited information from the appliance Access to management interface CWE-918 CVE References: CVE-2024-2049 Affected Products: CITRIX SD-WAN, Citrix SD-WAN, SD-WAN, XenServer Severity: Medium

CVE-2019-12985 [CRITICAL] Citrix SD-WAN Multiple Security Updates Citrix SD-WAN Multiple Security Updates of Problem Multiple vulnerabilities have been identified in the management console of the Citrix SD-WAN Center and NetScaler SD-WAN Center. Multiple Vulnerabilities have also been identified on the Citrix SD-WAN Appliance and NetScaler SD-WAN Appliance. Collectively, these vulnerabilities could result in an unauthenticated attacker executing commands as root against the SD-WAN Center manage

CVE-2019-10883 [CRITICAL] Citrix SD-WAN Center Security Updates Citrix SD-WAN Center Security Updates of Problem A command injection vulnerability has been identified in the management console of Citrix SD-WAN Center and NetScaler SD-WAN Center. This vulnerability could allow an unauthenticated attacker with access to the management console to compromise the host. A low severity cross-site scripting (XSS) vulnerability has been identified in the management console of Citrix SD-WAN Center and Ne

CVE-2020-8271 [CRITICAL] CWE-23 Citrix SDWAN Center Security Update Citrix SDWAN Center Security Update of Problem Multiple vulnerabilities have been discovered in Citrix SD-WAN Center that, if exploited, could allow an unauthenticated attacker with network access to SD-WAN Center to perform arbitrary code execution as root. These vulnerabilities have the following identifiers: CVE Description Vulnerability Type Pre-conditions CVE-2020-8271 Unauthenticated remote code execution with root privil

CVE-2012-2104 [MEDIUM] Citrix SD-WAN Multiple Security Updates Citrix SD-WAN Multiple Security Updates of Problem Multiple vulnerabilities have been identified in the management interface of Citrix NetScaler SD-WAN physical appliances and virtual appliances. Collectively these vulnerabilities could allow an unauthenticated attacker with access to the management interface to compromise the host. The vulnerabilities have been assigned the following CVE numbers. CVE-2018-17444 - Directory traversa

CVE-2019-11550 [MEDIUM] CVE-2019-11550 - Citrix SD-WAN Security Update CVE-2019-11550 - Citrix SD-WAN Security Update of Problem An information disclosure vulnerability has been identified in the Citrix SD-WAN Appliance. This vulnerability could allow an unauthenticated attacker to perform a man-in-the-middle attack against management traffic. The vulnerability has been assigned the following CVE number. CVE-2019-11550 – Information Disclosure in Citrix SD-WAN Appliance 10.2.x before 10.2.2 and

CVE-2022-27505 [MEDIUM] CWE-79 Citrix SD-WAN Security Bulletin for CVE-2022-27505 and CVE-2022-27506 Citrix SD-WAN Security Bulletin for CVE-2022-27505 and CVE-2022-27506 CWE CVE References: CVE-2022-27505, CVE-2022-27506 Affected Products: Citrix SD-WAN, SD-WAN, XenServer Severity: High Remediation: as soon as possible. This issue has been addressed in the following supported Citrix SD-WAN versions: Citrix SD-WAN Standard/Premium Edition Appliance versions 11.4.3a and above CVE-2022-27506: C