cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-6175,https://securityvulnerability.io/vulnerability/CVE-2020-6175,Missing SSL Certificate Validation in Citrix SD-WAN by Citrix,"Citrix SD-WAN versions 10.2.x prior to 10.2.6 and 11.0.x prior to 11.0.3 are affected by a vulnerability that lacks sufficient SSL certificate validation. This flaw could allow an attacker to execute certain actions or intercept communication, potentially leading to unauthorized access or data breaches. It is crucial for organizations using affected versions to apply necessary updates and enhancements to their SSL certificate validation mechanisms.",Citrix,"Citrix Sd-wan Center,Netscaler Sd-wan Center",5.9,MEDIUM,0.0012000000569969416,false,,false,false,false,,,false,false,,2020-03-16T20:42:27.000Z,0
CVE-2019-11345,https://securityvulnerability.io/vulnerability/CVE-2019-11345,Cross-Site Scripting Vulnerability in Citrix SD-WAN Center,"The Citrix SD-WAN Center and NetScaler SD-WAN Center are susceptible to a Cross-Site Scripting (XSS) vulnerability in versions prior to 10.2.1 and 10.0.7 respectively. This allows attackers to inject malicious scripts into web pages viewed by users, potentially compromising user sessions or redirecting users to malicious sites. Organizations should promptly upgrade to the respective patched versions to mitigate associated risks.",Citrix,"Netscaler Sd-wan Center,Citrix Sd-wan Center",6.1,MEDIUM,0.0007800000021234155,false,,false,false,false,,,false,false,,2020-03-10T13:03:02.000Z,0
CVE-2019-12985,https://securityvulnerability.io/vulnerability/CVE-2019-12985,Improper Input Validation in Citrix SD-WAN and NetScaler Products,"Citrix SD-WAN and NetScaler products have a vulnerability stemming from improper input validation, allowing potential exploitation by attackers. This issue affects versions below 10.2.3 for Citrix SD-WAN and below 10.0.8 for NetScaler, which may lead to unauthorized access or system compromise if exploited.",Citrix,"Sd-wan,Netscaler Sd-wan",9.8,CRITICAL,0.9151300191879272,false,,false,false,false,,,false,false,,2019-07-16T17:53:12.000Z,0
CVE-2019-12986,https://securityvulnerability.io/vulnerability/CVE-2019-12986,Improper Input Validation in Citrix SD-WAN by Citrix,"The vulnerability affects Citrix SD-WAN and NetScaler SD-WAN due to improper input validation, allowing attackers to potentially exploit the affected versions. If exploited, this could lead to unauthorized access or manipulation of data within the network environment.",Citrix,"Sd-wan,Netscaler Sd-wan",9.8,CRITICAL,0.9151300191879272,false,,false,false,false,,,false,false,,2019-07-16T17:47:04.000Z,0
CVE-2019-12987,https://securityvulnerability.io/vulnerability/CVE-2019-12987,Improper Input Validation in Citrix SD-WAN and NetScaler SD-WAN Products,"The Citrix SD-WAN and NetScaler SD-WAN products are affected by an improper input validation issue. This vulnerability could potentially allow an attacker to inject malicious input, leading to unauthorized actions or access within the system. Affected versions include Citrix SD-WAN 10.2.x prior to 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8. Citrix has provided updates to address this issue.",Citrix,"Sd-wan,Netscaler Sd-wan",9.8,CRITICAL,0.9151300191879272,false,,false,false,false,,,false,false,,2019-07-16T17:42:46.000Z,0
CVE-2019-12988,https://securityvulnerability.io/vulnerability/CVE-2019-12988,Improper Input Validation in Citrix SD-WAN and NetScaler SD-WAN,"Citrix SD-WAN versions 10.2.x prior to 10.2.3 and NetScaler SD-WAN versions 10.0.x prior to 10.0.8 are susceptible to improper input validation, allowing attackers to exploit the input validation flaws potentially leading to unauthorized access or manipulation of data. It is critical for users to update their systems to the latest versions to mitigate this vulnerability and protect their networks against potential threats.",Citrix,"Sd-wan,Netscaler Sd-wan",9.8,CRITICAL,0.9151300191879272,false,,false,false,false,,,false,false,,2019-07-16T17:39:56.000Z,0
CVE-2019-12989,https://securityvulnerability.io/vulnerability/CVE-2019-12989,SQL Injection in Citrix SD-WAN and NetScaler SD-WAN,"The Citrix SD-WAN and NetScaler SD-WAN products are susceptible to SQL Injection attacks, allowing malicious actors to execute arbitrary SQL queries. This vulnerability affects versions prior to 10.2.3 for Citrix SD-WAN 10.2.x and prior to 10.0.8 for NetScaler SD-WAN 10.0.x. Attackers can exploit this flaw to access sensitive data and potentially gain control over the affected system, posing significant risks to the security of network environments. It is crucial for organizations using these products to apply the necessary updates to mitigate the risks associated with this vulnerability.",Citrix,"Netscaler Sd-wan,Sd-wan",9.8,CRITICAL,0.029500000178813934,true,2022-03-25T00:00:00.000Z,false,false,true,2022-03-25T00:00:00.000Z,,false,false,,2019-07-16T17:32:44.000Z,0
CVE-2019-12990,https://securityvulnerability.io/vulnerability/CVE-2019-12990,Directory Traversal Vulnerability in Citrix SD-WAN and NetScaler SD-WAN,"This vulnerability in Citrix SD-WAN and NetScaler SD-WAN allows an attacker to exploit directory traversal pathways, granting unauthorized access to files on the server. By sending specially crafted requests, an attacker could traverse the application's directory structure, potentially exposing sensitive data and configuration files that may not be intended for public access. Administrators should ensure they are running the latest versions to mitigate potential risks.",Citrix,"Sd-wan,Netscaler Sd-wan",9.8,CRITICAL,0.5712699890136719,false,,false,false,false,,,false,false,,2019-07-16T17:29:01.000Z,0
CVE-2019-12991,https://securityvulnerability.io/vulnerability/CVE-2019-12991,Improper Input Validation in Citrix SD-WAN Products,"Citrix SD-WAN and NetScaler SD-WAN products are affected by an improper input validation vulnerability. This issue allows an attacker to manipulate inputs that may lead to unauthorized access or actions within the system. Specifically, versions prior to Citrix SD-WAN 10.2.3 and NetScaler SD-WAN 10.0.8 are susceptible, making it crucial for users to upgrade to address this significant security gap. Organizations utilizing these products should prioritize patching and implementing security measures to mitigate potential risks associated with this vulnerability.",Citrix,"Sd-wan,Netscaler Sd-wan",8.8,HIGH,0.09034000337123871,true,2022-03-25T00:00:00.000Z,false,false,true,2022-03-25T00:00:00.000Z,,false,false,,2019-07-16T17:16:38.000Z,0
CVE-2019-12992,https://securityvulnerability.io/vulnerability/CVE-2019-12992,Improper Input Validation in Citrix SD-WAN and NetScaler SD-WAN,"Citrix SD-WAN and NetScaler SD-WAN are affected by an improper input validation vulnerability, which can potentially allow attackers to manipulate the input data, potentially leading to unauthorized access or other malicious activities. This issue impacts versions prior to 10.2.3 for Citrix SD-WAN and prior to 10.0.8 for NetScaler SD-WAN. Users are advised to update their software to mitigate the risks associated with this vulnerability.",Citrix,"Sd-wan,Netscaler Sd-wan",8.8,HIGH,0.10117000341415405,false,,false,false,false,,,false,false,,2019-07-16T17:12:31.000Z,0
CVE-2019-10883,https://securityvulnerability.io/vulnerability/CVE-2019-10883,Command Injection Vulnerability in Citrix SD-WAN Center and NetScaler SD-WAN Center,"Citrix SD-WAN Center and NetScaler SD-WAN Center are susceptible to command injection vulnerabilities, allowing an attacker to execute arbitrary commands within the context of the affected application. This security flaw may lead to unauthorized access and control over system functionalities. It is crucial for users of the impacted versions to update their systems promptly to mitigate these risks. For detailed insights and remediation steps, refer to Citrix's security bulletins and advisories.",Citrix,"Netscaler Sd-wan Center,Citrix Sd-wan Center",9.8,CRITICAL,0.4950900077819824,false,,false,false,false,,,false,false,,2019-06-03T20:37:36.000Z,0
CVE-2019-11550,https://securityvulnerability.io/vulnerability/CVE-2019-11550,Improper Certificate Validation in Citrix SD-WAN and NetScaler SD-WAN,"Citrix SD-WAN and NetScaler SD-WAN are vulnerable to improper certificate validation, which could allow an attacker to conduct man-in-the-middle attacks by impersonating legitimate servers. The affected versions prior to the specified updates could fail to properly validate the authenticity of certificates, potentially leading to unauthorized access and data leaks.",Citrix,"Sd-wan,Netscaler Sd-wan",5.9,MEDIUM,0.0012000000569969416,false,,false,false,false,,,false,false,,2019-05-08T16:09:32.000Z,0
CVE-2018-17448,https://securityvulnerability.io/vulnerability/CVE-2018-17448,,An Incorrect Access Control issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.,Citrix,Netscaler Sd-wan,9.8,CRITICAL,0.0013500000350177288,false,,false,false,false,,,false,false,,2018-10-23T21:00:00.000Z,0
CVE-2018-17447,https://securityvulnerability.io/vulnerability/CVE-2018-17447,,An Information Exposure Through Log Files issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.,Citrix,Netscaler Sd-wan,7.5,HIGH,0.0008099999977275729,false,,false,false,false,,,false,false,,2018-10-23T21:00:00.000Z,0
CVE-2018-17446,https://securityvulnerability.io/vulnerability/CVE-2018-17446,,A SQL Injection issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.,Citrix,Netscaler Sd-wan,9.8,CRITICAL,0.0013000000035390258,false,,false,false,false,,,false,false,,2018-10-23T21:00:00.000Z,0
CVE-2018-17444,https://securityvulnerability.io/vulnerability/CVE-2018-17444,,A Directory Traversal issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.,Citrix,Netscaler Sd-wan,7.5,HIGH,0.00139999995008111,false,,false,false,false,,,false,false,,2018-10-23T21:00:00.000Z,0
CVE-2018-17445,https://securityvulnerability.io/vulnerability/CVE-2018-17445,,A Command Injection issue was discovered in Citrix SD-WAN 10.1.0 and NetScaler SD-WAN 9.3.x before 9.3.6 and 10.0.x before 10.0.4.,Citrix,Netscaler Sd-wan,9.8,CRITICAL,0.0010400000028312206,false,,false,false,false,,,false,false,,2018-10-23T21:00:00.000Z,0
CVE-2018-5314,https://securityvulnerability.io/vulnerability/CVE-2018-5314,,"Command injection vulnerability in Citrix NetScaler ADC and NetScaler Gateway 11.0 before build 70.16, 11.1 before build 55.13, and 12.0 before build 53.13; and the NetScaler Load Balancing instance distributed with NetScaler SD-WAN/CloudBridge 4000, 4100, 5000 and 5100 WAN Optimization Edition 9.3.0 allows remote attackers to execute a system command or read arbitrary files via an SSH login prompt.",Citrix,"Netscaler Sd-wan,Netscaler Gateway,Netscaler Application Delivery Controller",7.5,HIGH,0.001120000029914081,false,,false,false,false,,,false,false,,2018-03-01T17:00:00.000Z,0
CVE-2017-6316,https://securityvulnerability.io/vulnerability/CVE-2017-6316,,"Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote attackers to execute arbitrary shell commands as root via a CGISESSID cookie. On CloudBridge (the former name of NetScaler SD-WAN) devices, the cookie name was CAKEPHP rather than CGISESSID.",Citrix,Netscaler Sd-wan,9.8,CRITICAL,0.9579499959945679,true,2022-03-25T00:00:00.000Z,false,false,true,2022-03-25T00:00:00.000Z,true,false,false,,2017-07-20T04:00:00.000Z,0