cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-8247,https://securityvulnerability.io/vulnerability/CVE-2020-8247,Privilege Escalation Issue in Citrix ADC and Gateway Products,"Certain versions of Citrix ADC and Citrix Gateway, as well as various Citrix SD-WAN WANOP releases, are susceptible to a privilege escalation vulnerability that impacts the management interface. This vulnerability allows unauthorized users to gain elevated access to system functionalities, which could compromise the integrity of the system. It is essential for users to apply available patches and updates to their affected products to mitigate potential risks associated with this vulnerability. For more details, refer to the Citrix support documentation.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",8.8,HIGH,0.0010400000028312206,false,,false,false,false,,,false,false,,2020-09-18T20:12:32.000Z,0
CVE-2020-8246,https://securityvulnerability.io/vulnerability/CVE-2020-8246,Denial of Service Vulnerability in Citrix ADC and Gateway Products,"Citrix ADC and Citrix Gateway products have a vulnerability that allows an attacker to execute a denial of service attack originating from the management network. This issue affects multiple versions of Citrix ADC, NetScaler Gateway, and Citrix SD-WAN WANOP, making them susceptible to disruptions that can impact service availability.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",7.5,HIGH,0.0010300000431016088,false,,false,false,false,,,false,false,,2020-09-18T20:12:26.000Z,0
CVE-2020-8196,https://securityvulnerability.io/vulnerability/CVE-2020-8196,Improper Access Control in Citrix ADC and Gateway,"This vulnerability is due to improper access control mechanisms in Citrix ADC and Citrix Gateway. It allows limited information disclosure to users with low privileges by exposing certain sensitive information. This affects a range of software versions, potentially compromising the security of user data and critical configurations within the affected systems.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",4.3,MEDIUM,0.0036899999249726534,true,2021-11-03T00:00:00.000Z,false,false,true,2021-11-03T00:00:00.000Z,,false,false,,2020-07-10T15:39:54.000Z,0
CVE-2020-8195,https://securityvulnerability.io/vulnerability/CVE-2020-8195,Improper Input Validation in Citrix ADC and Gateway Software,"This vulnerability stems from improper input validation in Citrix ADC and Citrix Gateway, allowing low privileged users to potentially gain limited access to sensitive information. The affected versions span across multiple iterations of both Citrix ADC and various Citrix SDWAN releases. Organizations using these products should evaluate their current deployments against the affected versions and apply recommended patches to mitigate security risks.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.5,MEDIUM,0.8536700010299683,true,2021-11-03T00:00:00.000Z,false,false,true,2021-11-03T00:00:00.000Z,,false,false,,2020-07-10T15:39:35.000Z,0
CVE-2020-8198,https://securityvulnerability.io/vulnerability/CVE-2020-8198,Stored Cross-Site Scripting in Citrix ADC and Gateway Products,"A vulnerability exists in Citrix ADC and Citrix Gateway that allows attackers to exploit improper input validation. This flaw could permit the injection of malicious scripts into web pages viewed by users, leading to stored cross-site scripting (XSS) attacks. Affected systems before specified versions may leak sensitive information or allow unauthorized actions under the context of an affected user. Mitigation measures should be implemented to safeguard against potential exploitation of this vulnerability.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.1,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2020-07-10T15:39:14.000Z,0
CVE-2020-8194,https://securityvulnerability.io/vulnerability/CVE-2020-8194,Reflected Code Injection Vulnerability in Citrix ADC and Citrix Gateway,"A reflected code injection vulnerability exists in Citrix ADC and Citrix Gateway versions earlier than 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14, and 10.5-70.18, as well as in Citrix SDWAN WAN-OP versions prior to 11.1.1a, 11.0.3d, and 10.2.7. This vulnerability can be exploited to alter file downloads, potentially leading to unauthorized access and sensitive data exposure.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.5,MEDIUM,0.9706599712371826,false,,false,false,false,,,false,false,,2020-07-10T15:38:54.000Z,0
CVE-2020-8193,https://securityvulnerability.io/vulnerability/CVE-2020-8193,Unauthenticated Access in Citrix ADC and Citrix Gateway Products,"Improper access control in multiple versions of Citrix ADC and Citrix Gateway, as well as Citrix SDWAN WAN-OP, allows unauthenticated users to access sensitive URL endpoints. This vulnerability may expose critical functionalities, compromising the security of affected installations. It is crucial for organizations using these products to apply the necessary updates to mitigate potential risks.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.5,MEDIUM,0.9686400294303894,true,2021-11-03T00:00:00.000Z,false,false,true,2020-07-15T14:43:03.000Z,true,false,false,,2020-07-10T15:38:28.000Z,0
CVE-2020-8191,https://securityvulnerability.io/vulnerability/CVE-2020-8191,Cross-Site Scripting Vulnerability in Citrix ADC and Gateway,"An improper input validation issue in Citrix ADC and Citrix Gateway, as well as Citrix SDWAN WAN-OP, can lead to reflected cross-site scripting (XSS) vulnerabilities. This allows an attacker to inject malicious scripts into web pages viewed by users. Exploiting this vulnerability could result in unauthorized actions being taken on behalf of users or the exfiltration of sensitive data.",Citrix,"Citrix Adc, Citrix Gateway, Citrix Sdwan Wan-op",6.1,MEDIUM,0.004230000078678131,false,,false,false,false,,,false,false,,2020-07-10T15:38:10.000Z,0