Citrix Gateway Plug-In vulnerabilities
3 known vulnerabilities affecting citrix/gateway_plug-in.
Total CVEs
3
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH2
Vulnerabilities
Page 1 of 1
CVE-2022-21827HIGHCVSS 7.1fixed in 21.9.1.22022-05-26
CVE-2022-21827 [HIGH] CWE-269 CVE-2022-21827: An improper privilege vulnerability has been discovered in Citrix Gateway Plug-in for Windows (Citri
An improper privilege vulnerability has been discovered in Citrix Gateway Plug-in for Windows (Citrix Secure Access for Windows) <21.9.1.2 what could allow an attacker who has gained local access to a computer with Citrix Gateway Plug-in installed, to corrupt or delete files as SYSTEM.
nvd
CVE-2020-8257CRITICALCVSS 9.8≥ 12.0, ≤ 12.1-58.15≥ 13.0, ≤ 13.0-61.482020-12-14
CVE-2020-8257 [CRITICAL] CWE-269 CVE-2020-8257: Improper privilege management on services run by Citrix Gateway Plug-in for Windows, versions before
Improper privilege management on services run by Citrix Gateway Plug-in for Windows, versions before and including 13.0-61.48 and 12.1-58.15, lead to privilege escalation attacks
nvd
CVE-2020-8258HIGHCVSS 7.5≥ 12.0, ≤ 12.1-58≥ 13.0, ≤ 13.0-61.482020-12-14
CVE-2020-8258 [HIGH] CWE-269 CVE-2020-8258: Improper privilege management on services run by Citrix Gateway Plug-in for Windows, versions before
Improper privilege management on services run by Citrix Gateway Plug-in for Windows, versions before and including 13.0-61.48 and 12.1-58.15, allows an attacker to modify arbitrary files.
nvd