cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2023-24487,https://securityvulnerability.io/vulnerability/CVE-2023-24487,Arbitrary file read,Arbitrary file read in Citrix ADC and Citrix Gateway ,Citrix,Citrix Adc And Citrix Gateway,6.3,MEDIUM,0.001129999989643693,false,false,false,false,,false,false,2023-07-10T21:15:00.000Z,0
CVE-2023-24488,https://securityvulnerability.io/vulnerability/CVE-2023-24488,Cross site scripting,Cross site scripting vulnerability in Citrix ADC and Citrix Gateway  in allows and attacker to perform cross site scripting,Citrix,Citrix Adc And Citrix Gateway,6.1,MEDIUM,0.09860000014305115,false,false,false,true,true,false,false,2023-07-10T21:15:00.000Z,0
CVE-2022-27518,https://securityvulnerability.io/vulnerability/CVE-2022-27518,Unauthenticated remote arbitrary code execution,"Unauthenticated remote arbitrary code execution
",Citrix,"Citrix Gateway, Citrix Adc",9.8,CRITICAL,0.1903200000524521,true,false,false,true,true,false,false,2022-12-13T00:00:00.000Z,0
CVE-2022-27516,https://securityvulnerability.io/vulnerability/CVE-2022-27516,"User login brute force protection functionality bypass ","User login brute force protection functionality bypass   
",Citrix,"Citrix Gateway, Citrix Adc",5.3,MEDIUM,0.001970000099390745,false,false,false,false,,false,false,2022-11-08T21:26:12.642Z,0
CVE-2022-27510,https://securityvulnerability.io/vulnerability/CVE-2022-27510,"Unauthorized access to Gateway user capabilities ","Unauthorized access to Gateway user capabilities 
",Citrix,"Citrix Gateway, Citrix Adc",9.8,CRITICAL,0.0020200000144541264,false,false,false,false,,false,false,2022-11-08T21:26:10.688Z,0
CVE-2022-27513,https://securityvulnerability.io/vulnerability/CVE-2022-27513,Remote desktop takeover via phishing,"Remote desktop takeover via phishing  
",Citrix,"Citrix Gateway, Citrix Adc",8.3,HIGH,0.0020099999383091927,false,false,false,false,,false,false,2022-11-08T21:26:08.238Z,0
CVE-2021-22956,https://securityvulnerability.io/vulnerability/CVE-2021-22956,,"An uncontrolled resource consumption vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22 and 11.1-65.23 that could allow an attacker with access to NSIP or SNIP with management interface access to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan",7.5,HIGH,0.0010300000431016088,false,false,false,false,,false,false,2021-12-07T13:12:38.000Z,0
CVE-2021-22955,https://securityvulnerability.io/vulnerability/CVE-2021-22955,,"A unauthenticated denial of service vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22 and 11.1-65.23 when configured as a VPN (Gateway) or AAA virtual server could allow an attacker to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication.",Citrix,"Citrix Adc, Citrix Gateway",7.5,HIGH,0.0010300000431016088,false,false,false,false,,false,false,2021-12-07T13:12:33.000Z,0
CVE-2021-22920,https://securityvulnerability.io/vulnerability/CVE-2021-22920,,"A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to a phishing attack through a SAML authentication hijack to steal a valid user session.",Citrix,"Citrix Adc, Citrix Gateway",6.5,MEDIUM,0.0015699999639764428,false,false,false,false,,false,false,2021-08-05T20:16:49.000Z,0
CVE-2021-22919,https://securityvulnerability.io/vulnerability/CVE-2021-22919,,"A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. These vulnerabilities, if exploited, could lead to the limited available disk space on the appliances being fully consumed.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sd-wan Wanop",7.5,HIGH,0.0010300000431016088,false,false,false,false,,false,false,2021-08-05T20:16:46.000Z,0
CVE-2021-22927,https://securityvulnerability.io/vulnerability/CVE-2021-22927,,A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an attacker to hijack a session.,Citrix,"Citrix Adc, Citrix Gateway",8.1,HIGH,0.001509999972768128,false,false,false,false,,false,false,2021-08-05T20:16:42.000Z,0
CVE-2020-8299,https://securityvulnerability.io/vulnerability/CVE-2020-8299,,"Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way of a network-based denial-of-service from within the same Layer 2 network segment. Note that the attacker must be in the same Layer 2 network segment as the vulnerable appliance.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sd-wan Wanop Edition",6.5,MEDIUM,0.0005799999926239252,false,false,false,false,,false,false,2021-06-16T13:08:22.000Z,0
CVE-2020-8300,https://securityvulnerability.io/vulnerability/CVE-2020-8300,,"Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or Citrix Gateway must be configured as a SAML SP or a SAML IdP for this to be possible.",Citrix,"Citrix Adc, Citrix Gateway",6.5,MEDIUM,0.000750000006519258,false,false,false,true,true,false,false,2021-06-16T13:08:16.000Z,0
CVE-2020-8247,https://securityvulnerability.io/vulnerability/CVE-2020-8247,,"Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-WAN WANOP 11.1 before 11.1.2a, Citrix SD-WAN WANOP 11.0 before 11.0.3f, Citrix SD-WAN WANOP 10.2 before 10.2.7b are vulnerable to escalation of privileges on the management interface.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",8.8,HIGH,0.0010400000028312206,false,false,false,false,,false,false,2020-09-18T20:12:32.000Z,0
CVE-2020-8246,https://securityvulnerability.io/vulnerability/CVE-2020-8246,,"Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-WAN WANOP 11.1 before 11.1.2a, Citrix SD-WAN WANOP 11.0 before 11.0.3f, Citrix SD-WAN WANOP 10.2 before 10.2.7b are vulnerable to a denial of service attack originating from the management network.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",7.5,HIGH,0.0010300000431016088,false,false,false,false,,false,false,2020-09-18T20:12:26.000Z,0
CVE-2020-8245,https://securityvulnerability.io/vulnerability/CVE-2020-8245,,"Improper Input Validation on Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-WAN WANOP 11.1 before 11.1.2a, Citrix SD-WAN WANOP 11.0 before 11.0.3f, Citrix SD-WAN WANOP 10.2 before 10.2.7b leads to an HTML Injection attack against the SSL VPN web portal.",Citrix,"Citrix Adc, Citrix Gateway",6.1,MEDIUM,0.0007800000021234155,false,false,false,false,,false,false,2020-09-18T20:12:07.000Z,0
CVE-2020-8197,https://securityvulnerability.io/vulnerability/CVE-2020-8197,,"Privilege escalation vulnerability on Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 allows a low privileged user with management access to execute arbitrary commands.",Citrix,"Citrix Adc, Citrix Gateway",8.8,HIGH,0.001019999966956675,false,false,false,false,,false,false,2020-07-10T15:40:09.000Z,0
CVE-2020-8196,https://securityvulnerability.io/vulnerability/CVE-2020-8196,,"Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",4.3,MEDIUM,0.0036899999249726534,true,false,false,true,,false,false,2020-07-10T15:39:54.000Z,0
CVE-2020-8195,https://securityvulnerability.io/vulnerability/CVE-2020-8195,,"Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.5,MEDIUM,0.8536700010299683,true,false,false,true,,false,false,2020-07-10T15:39:35.000Z,0
CVE-2020-8198,https://securityvulnerability.io/vulnerability/CVE-2020-8198,,"Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in Stored Cross-Site Scripting (XSS).",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.1,MEDIUM,0.0007800000021234155,false,false,false,false,,false,false,2020-07-10T15:39:14.000Z,0
CVE-2020-8194,https://securityvulnerability.io/vulnerability/CVE-2020-8194,,"Reflected code injection in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows the modification of a file download.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.5,MEDIUM,0.9706599712371826,false,false,false,false,,false,false,2020-07-10T15:38:54.000Z,0
CVE-2020-8193,https://securityvulnerability.io/vulnerability/CVE-2020-8193,,"Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows unauthenticated access to certain URL endpoints.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.5,MEDIUM,0.9686400294303894,true,false,false,true,true,false,false,2020-07-10T15:38:28.000Z,0
CVE-2020-8191,https://securityvulnerability.io/vulnerability/CVE-2020-8191,,"Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows reflected Cross Site Scripting (XSS).",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.1,MEDIUM,0.004230000078678131,false,false,false,false,,false,false,2020-07-10T15:38:10.000Z,0
CVE-2020-8187,https://securityvulnerability.io/vulnerability/CVE-2020-8187,,Improper input validation in Citrix ADC and Citrix Gateway versions before 11.1-63.9 and 12.0-62.10 allows unauthenticated users to perform a denial of service attack.,Citrix,"Citrix Adc, Citrix Gateway",7.5,HIGH,0.0010999999940395355,false,false,false,false,,false,false,2020-07-10T15:35:56.000Z,0
CVE-2020-8190,https://securityvulnerability.io/vulnerability/CVE-2020-8190,,"Incorrect file permissions in Citrix ADC and Citrix Gateway before versions 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 allows privilege escalation.",Citrix,"Citrix Adc, Citrix Gateway",7.5,HIGH,0.0010400000028312206,false,false,false,false,,false,false,2020-07-10T15:32:34.000Z,0