Lucene search

[email protected]CVE-2019-11345

HistoryMar 10, 2020 - 2:15 p.m.

CVE-2019-11345

2020-03-1014:15:00

CWE-79

[email protected]

web.nvd.nist.gov

citrix

netscaler

sd-wan center

cve-2019-11345

xss

security vulnerability

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

9.4 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

33.6%

JSON

Citrix SD-WAN Center 10.2.x before 10.2.1 and NetScaler SD-WAN Center 10.0.x before 10.0.7 allow XSS.

CPENameOperatorVersion
citrix:netscaler_sd-wan_centercitrix netscaler sd-wan centerlt10.0.7
citrix:citrix_sd-wan_centercitrix citrix sd-wan centerlt10.2.1

CPE	Name	Operator	Version
citrix:netscaler_sd-wan_center	citrix netscaler sd-wan center	lt	10.0.7
citrix:citrix_sd-wan_center	citrix citrix sd-wan center	lt	10.2.1

References

support.citrix.com/article/CTX247737

6.1 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

9.4 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.001 Low

EPSS

Percentile

33.6%

JSON

Related for CVE-2019-11345

prion1 cvelist1 citrix1