Lucene search

[email protected]CVE-2015-5538

HistorySep 17, 2015 - 4:59 p.m.

CVE-2015-5538

2015-09-1716:59:02

[email protected]

web.nvd.nist.gov

cve-2015-5538

citrix netscaler

netscaler adc

netscaler gateway

remote attackers

privilege escalation

command line interface

web user interface

vulnerabilities

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

77.0%

JSON

Multiple unspecified vulnerabilities in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 10.1 Build 132.8, 10.5 before Build 57.7, and 10.5e before Build 56.1505.e allow remote attackers to gain privileges via unknown vectors, related to the (1) Command Line Interface (CLI) and the (2) Web User Interface (UI).

Affected configurations

NVD

Node

citrixnetscaler_application_delivery_controller_firmwareMatch10.1

citrixnetscaler_application_delivery_controller_firmwareMatch10.5

citrixnetscaler_application_delivery_controller_firmwareMatch10.5e

citrixnetscaler_gateway_firmwareMatch10.1

citrixnetscaler_gateway_firmwareMatch10.5

citrixnetscaler_gateway_firmwareMatch10.5e

CPENameOperatorVersion
citrix:netscaler_application_delivery_controller_firmwarecitrix netscaler application delivery controller firmwareeq10.1
citrix:netscaler_application_delivery_controller_firmwarecitrix netscaler application delivery controller firmwareeq10.5
citrix:netscaler_application_delivery_controller_firmwarecitrix netscaler application delivery controller firmwareeq10.5e
citrix:netscaler_gateway_firmwarecitrix netscaler gateway firmwareeq10.1
citrix:netscaler_gateway_firmwarecitrix netscaler gateway firmwareeq10.5
citrix:netscaler_gateway_firmwarecitrix netscaler gateway firmwareeq10.5e

CPE	Name	Operator	Version
citrix:netscaler_application_delivery_controller_firmware	citrix netscaler application delivery controller firmware	eq	10.1
citrix:netscaler_application_delivery_controller_firmware	citrix netscaler application delivery controller firmware	eq	10.5
citrix:netscaler_application_delivery_controller_firmware	citrix netscaler application delivery controller firmware	eq	10.5e
citrix:netscaler_gateway_firmware	citrix netscaler gateway firmware	eq	10.1
citrix:netscaler_gateway_firmware	citrix netscaler gateway firmware	eq	10.5
citrix:netscaler_gateway_firmware	citrix netscaler gateway firmware	eq	10.5e

References

support.citrix.com/article/CTX201334

www.securitytracker.com/id/1033618

7.5 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.005 Low

EPSS

Percentile

77.0%

JSON

Related for CVE-2015-5538

cvelist1 prion1 nvd1