CVE-2020-8299

🗓️ 16 Jun 2021 13:08:22Reported by hackeroneType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 56 Views

Citrix ADC, NetScaler Gateway and SD-WAN WANOP before 13.0-76.29, 12.1-61.18, 11.1-65.20, 12.1-FIPS before 12.1-55.238 suffer from uncontrolled resource consumption leading to a network-based denial-of-service

Reporter	Title	Published	Views	Family All 13
Circl	CVE-2020-8299	16 Jun 202118:40	–	circl
Tenable Nessus	Citrix ADC and Citrix NetScaler Gateway Multiple Vulnerabilities (CTX297155)	18 Jun 202100:00	–	nessus
Tenable Nessus	Citrix SD-WAN Center Test Build Network DoS (CTX297155)	18 Jun 202100:00	–	nessus
CNNVD	Citrix Systems NetScaler Gateway 资源管理错误漏洞	9 Jun 202100:00	–	cnnvd
Citrix	Citrix Application Delivery Controller, Citrix Gateway, and Citrix SD-WAN WANOP Edition appliance Security Update	8 Jun 202111:06	–	citrix
Citrix	Secure Hub shows an error and fails to connect after upgrading to a fixed firmware build to address CVE-2020-8299/ CVE-2020-8300	11 Jun 202100:00	–	citrix
Cvelist	CVE-2020-8299	16 Jun 202113:08	–	cvelist
EUVD	EUVD-2020-29166	7 Oct 202500:30	–	euvd
NCSC	Vulnerabilities fixed in Citrix ADC and Citrix Gateway	8 Jun 202100:00	–	ncsc
NVD	CVE-2020-8299	16 Jun 202114:15	–	nvd

NVD

Node

citrix gatewayRange12.1–12.1-61.18

citrix gatewayRange13.0–13.0-76.29

citrix netscaler_gatewayRange11.1–11.1-65.20

Node

citrix application_delivery_controller_firmwareRange11.1–11.1-65.20

citrix application_delivery_controller_firmwareRange12.1–12.1-61.18

citrix application_delivery_controller_firmwareRange13.0–13.0-76.29

AND

citrix application_delivery_controllerMatch-

Node

citrix application_delivery_controller_firmwareRange12.1–12.1-55.238

AND

citrix mpx/sdx_14030_fipsMatch-

citrix mpx/sdx_14060_fipsMatch-

citrix mpx/sdx_14080_fipsMatch-

citrix mpx_15030-50g_fipsMatch-

citrix mpx_15040-50g_fipsMatch-

citrix mpx_15060-50g_fipsMatch-

citrix mpx_15080-50g_fipsMatch-

citrix mpx_15100-50g_fipsMatch-

citrix mpx_15120-50g_fipsMatch-

citrix mpx_8905_fipsMatch-

citrix mpx_8910_fipsMatch-

citrix mpx_8920_fipsMatch-

Node

citrix sd-wan_wanopRange10.2–10.2.9a

citrix sd-wan_wanopRange11.1–11.1.2c

citrix sd-wan_wanopRange11.2–11.2.3a

citrix sd-wan_wanopRange11.3–11.3.2

[
  {
    "product": "Citrix ADC, Citrix Gateway, Citrix SD-WAN WANOP Edition",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Fixed in Citrix ADC and Citrix Gateway 13.0-76.29 and later releases of 13.0, Citrix ADC and Citrix Gateway 12.1-61.18 and later releases of 12.1, Citrix ADC and NetScaler Gateway 11.1-65.20 and later releases of 11.1, Citrix ADC 12.1-FIPS 12.1-55.238 and later releases of 12.1-FIPS, Citrix SD-WAN WANOP 11.4.0 and later releases of 11.4, Citrix SD-WAN WANOP 11.3.2 and later releases of 11.3, Citrix SD-WAN WANOP 11.3.1a and later releases of 11.3, Citrix SD-WAN WANOP 11.2.3a and later releases of 11.2, Citrix SD-WAN WANOP 11.1.2c and later releases of 11.1, Citrix SD-WAN WANOP 10.2.9a and later releases of 10.2"
      }
    ]
  }
]

Source	Link
support	www.support.citrix.com/article/CTX297155

21 Nov 2024 05:38Current

6.3Medium risk

Vulners AI Score6.3

CVSS 23.3

CVSS 3.16.5

EPSS0.00319

CWE-400