Citrix Schwachstellen

Zeitverlauf

Typ

Connectivity Software	256
Network Management Software	93
Virtualization Software	22
Web Server	1

Produkt

Citrix Gateway	36
Citrix Xen	35
Citrix ADC	29
Citrix XenMobile Server	19
Citrix XenServer	19

Massnahmen

Official Fix	318
Temporary Fix	1
Workaround	5
Unavailable	10
Not Defined	38

Ausnutzbarkeit

High	25
Functional	3
Proof-of-Concept	61
Unproven	39
Not Defined	244

Zugriffsart

Not Defined	0
Physical	2
Local	73
Adjacent	32
Network	265

Authentisierung

Not Defined	0
High	5
Low	107
None	260

Benutzeraktivität

Not Defined	0
Required	52
None	320

C3BM Index

CVSSv3 Base

≤1	0
≤2	1
≤3	3
≤4	24
≤5	37
≤6	95
≤7	76
≤8	63
≤9	36
≤10	37

CVSSv3 Temp

≤1	0
≤2	1
≤3	9
≤4	28
≤5	61
≤6	99
≤7	66
≤8	39
≤9	43
≤10	26

VulDB

≤1	0
≤2	1
≤3	4
≤4	26
≤5	49
≤6	95
≤7	60
≤8	87
≤9	14
≤10	36

NVD

≤1	0
≤2	0
≤3	0
≤4	1
≤5	5
≤6	15
≤7	21
≤8	38
≤9	15
≤10	33

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	3
≤7	2
≤8	1
≤9	4
≤10	5

Hersteller

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	1
≤9	1
≤10	1

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploit 0-day

<1k	0
<2k	2
<5k	33
<10k	131
<25k	152
<50k	47
<100k	6
≥100k	1

Exploit heute

<1k	316
<2k	18
<5k	16
<10k	15
<25k	7
<50k	0
<100k	0
≥100k	0

Exploitmarktvolumen

🔴 CTI Aktivitäten

Affected Products (102): ADC (29), ADC Linux Client (1), ADM (2), Access Gateway (17), Access Gateway Plug-in (1), Access Gateway Plugin (1), AppDNA (1), Application Delivery Controller (4), Application Delivery Management (2), Broadcast Server (1), Citrix Presentation Server (1), Cloud Connector (1), CloudPlatform (4), CloudPortal Services Manager (8), CloudStack (1), Command Center (5), Deterministic Network Enhancer (1), Edgesight For Endpoints (1), Federated Authentication Service (1), Gateway (36), Gateway Linux Client (1), Gateway Plug-in (3), GoToMeeting (1), Hypervisor (3), ICA Client (2), ICA Client for Linux (1), License Server (1), License Server VPX (1), Licensing (1), Licensing Administration Console (1), Linux Virtual Delivery Agent (1), MetaFrame (8), MetaFrame Password Manager (1), MetaFrame Presentation Server (1), Metaframe (3), Metaframe Presentation Server (1), NFuse (2), NetScaler (8), NetScaler ADC (14), NetScaler Appliance (1), NetScaler Gateway (18), NetScaler SDX (1), Netscaler (14), Netscaler Access Gateway (1), Netscaler Application Delivery Controller (16), Netscaler Gateway (15), Netscaler SD-WAN (17), Netscaler VPX (1), Nfuse (4), Nfuse Webserver (1), Online Plug-in (2), Presentation Server (11), Presentation Server Client (1), Program Neighborhood Agent (2), Program Neighborhood Client (1), Provisioning Services (7), Receiver Desktop Lock (1), SD-WAN (15), SD-WAN Center (5), SD-WAN Center Management Console (1), SD-WAN Orchestrator for On-Premises (1), SD-WAN Premium (1), SD-WAN Premium Edition Appliance (2), SD-WAN Standard (1), SD-WAN Standard Edition Appliance (2), SD-WAN WANOP (5), SD-WAN WANOP Edition (2), SDWAN WAN-OP (6), Secure Access Client (2), Secure Gateway (2), Secure Mail (2), Server (1), ShareFile (4), ShareFile StorageZones (2), ShareFile StorageZones Controller (4), ShareFile Storage Zones Controller (2), StoreFront (2), Storefront Server (2), Studio (1), VDI-in-a-Box (2), Virtual Apps (4), Virtual Apps and Desktops (3), Virtual Delivery Agent (1), Virtual Desktops (2), Web Interface (4), Workspace App (9), Workspace app (1), Worx Home (1), Xen (35), XenApp (7), XenCenterWeb (4), XenClient (1), XenDesktop (9), XenMobile (2), Xen Mobile (2), XenMobile Device Manager Server (1), XenMobile MDX Toolkit (1), XenMobile Server (19), XenServer (19), Zenprise Device Manager Server (1), iOS Receiver (1), program neighborhood client (1)

Link to Vendor Website: https://www.citrix.com/

Veröffentlicht	Base	Temp	Schwachstelle	Prod	Aus	Mas	EPSS	CTI	CVE
12.03.2024	6.9	6.8	Citrix SD-WAN Standard/SD-WAN Premium erweiterte Rechte	Network Management Software	Not Defined	Official Fix	0.00043	0.00	CVE-2024-2049
16.01.2024	7.7	7.6	Citrix NetScaler ADC/NetScaler Gateway Pufferüberlauf	Network Management Software	High	Official Fix	0.00597	0.00	CVE-2023-6549
16.01.2024	6.9	6.8	Citrix NetScaler ADC/NetScaler Gateway NSIP/CLIP/SNIP erweiterte Rechte	Network Management Software	High	Official Fix	0.01568	0.03	CVE-2023-6548
16.01.2024	5.4	5.4	Citrix Virtual Apps and Desktops Session Recording Privilege Escalation	Connectivity Software	Not Defined	Official Fix	0.00050	0.03	CVE-2023-6184
16.01.2024	5.3	5.2	Citrix StoreFront Cross Site Scripting	Connectivity Software	Not Defined	Official Fix	0.00095	0.00	CVE-2023-5914
27.10.2023	7.7	7.6	Citrix NetScaler ADC/NetScaler Gateway Pufferüberlauf	Network Management Software	Not Defined	Official Fix	0.00046	0.00	CVE-2023-4967
10.10.2023	8.3	8.2	Citrix NetScaler ADC/NetScaler Gateway OpenID openid-configuration ns_aaa_oauthrp_send_openid_config CitrixBleed Pufferüberlauf	Network Management Software	High	Official Fix	0.96869	0.09	CVE-2023-4966
18.07.2023	9.8	9.6	Citrix NetScaler ADC/NetScaler Gateway erweiterte Rechte	Connectivity Software	High	Official Fix	0.91186	0.00	CVE-2023-3519
18.07.2023	8.0	7.9	Citrix NetScaler ADC/NetScaler Gateway Management Interface erweiterte Rechte	Connectivity Software	Not Defined	Official Fix	0.00043	0.04	CVE-2023-3467
18.07.2023	6.4	6.4	Citrix NetScaler ADC/NetScaler Gateway Cross Site Scripting	Connectivity Software	Not Defined	Official Fix	0.00046	0.00	CVE-2023-3466
11.07.2023	7.8	7.5	Citrix Secure Access Client erweiterte Rechte	Connectivity Software	Not Defined	Official Fix	0.00043	0.02	CVE-2023-24491
11.07.2023	8.2	8.1	Citrix Secure Access Client erweiterte Rechte	Connectivity Software	Not Defined	Official Fix	0.00159	0.03	CVE-2023-24492
13.06.2023	5.9	5.8	Citrix Virtual Apps and Desktops/Virtual Delivery Agent erweiterte Rechte	Connectivity Software	Not Defined	Official Fix	0.00045	0.00	CVE-2023-24490
13.06.2023	9.8	9.6	Citrix ShareFile StorageZones Controller erweiterte Rechte	Connectivity Software	Not Defined	Official Fix	0.97429	0.00	CVE-2023-24489
11.05.2023	4.3	4.1	Citrix ADC/Gateway Cross Site Scripting	Connectivity Software	Not Defined	Official Fix	0.07218	0.01	CVE-2023-24488
11.05.2023	5.5	5.3	Citrix ADC/Gateway NSIP/SNIP Remote Code Execution	Connectivity Software	Not Defined	Official Fix	0.00087	0.00	CVE-2023-24487
11.03.2023	5.3	4.9	Citrix Workspace app ICA File erweiterte Rechte	Connectivity Software	Functional	Official Fix	0.00042	0.05	CVE-2023-24486
17.02.2023	5.5	5.4	Citrix Workspace App Log File erweiterte Rechte	Connectivity Software	Not Defined	Official Fix	0.00043	0.04	CVE-2023-24484
16.02.2023	7.8	7.6	Citrix Workspace App erweiterte Rechte	Connectivity Software	Not Defined	Official Fix	0.00043	0.04	CVE-2023-24485
16.02.2023	7.8	7.6	Citrix Virtual Apps and Desktops erweiterte Rechte	Connectivity Software	Not Defined	Official Fix	0.00042	0.03	CVE-2023-24483
16.01.2023	2.0	1.8	Citrix Workspace App ICA Session ctxwebhelper Information Disclosure	Connectivity Software	Proof-of-Concept	Workaround	0.00000	0.00
27.12.2022	5.4	5.3	Citrix ADC/Gateway SSL VPN Endpoint Information Disclosure	Connectivity Software	Not Defined	Official Fix	0.00064	0.03	CVE-2019-18177
13.12.2022	9.8	9.6	Citrix ADC/Gateway Remote Code Execution	Connectivity Software	Not Defined	Official Fix	0.24208	0.04	CVE-2022-27518
09.11.2022	8.5	8.4	Citrix Gateway/ADC VPN schwache Authentisierung	Connectivity Software	Not Defined	Official Fix	0.00137	0.04	CVE-2022-27510
09.11.2022	6.3	6.2	Citrix Gateway/ADC VPN/AAA Virtual Server Information Disclosure	Connectivity Software	Not Defined	Official Fix	0.00190	0.03	CVE-2022-27516

347 weitere Einträge werden nicht mehr angezeigt

🔒 Login Required

You need to signup and login to see more of the remaining 347 results.

◂ ZurückÜbersichtWeiter ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!