Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCitrixCVELIST:CVE-2023-3467
HistoryJul 19, 2023 - 6:35 p.m.

CVE-2023-3467

2023-07-1918:35:56
CWE-269
Citrix
www.cve.org
8
privilege escalation
root administrator
nsroot
cve-2023-3467

CVSS3

8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

9

Confidence

High

EPSS

0

Percentile

9.0%

JSON

Privilege Escalation to root administrator (nsroot)

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "product": "NetScaler ADC ",
    "vendor": "Citrix",
    "versions": [
      {
        "lessThan": "49.13",
        "status": "affected",
        "version": "13.1",
        "versionType": "patch"
      },
      {
        "lessThan": "91.13",
        "status": "affected",
        "version": "13.0",
        "versionType": "patch"
      },
      {
        "lessThan": "37.159",
        "status": "affected",
        "version": "13.1-FIPS",
        "versionType": "patch"
      },
      {
        "lessThan": "55.297",
        "status": "affected",
        "version": "12.1-FIPS",
        "versionType": "patch"
      },
      {
        "lessThan": "55.297",
        "status": "affected",
        "version": "12.1-NDcPP",
        "versionType": "patch"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "NetScaler Gateway",
    "vendor": "Citrix",
    "versions": [
      {
        "lessThan": "49.13",
        "status": "affected",
        "version": "13.1",
        "versionType": "patch"
      },
      {
        "lessThan": "91.13",
        "status": "affected",
        "version": "13.0",
        "versionType": "patch"
      }
    ]
  }
]

Related

nvd 1
prion 1
cve 1
citrix 1
nessus 1
ics 1
rapid7blog 1
thn 1
nvd
nvd
CVE-2023-3467
2023-07-19 19:15:12
prion
prion
Privilege escalation
2023-07-19 19:15:00
cve
cve
CVE-2023-3467
2023-07-19 19:15:12
citrix
citrix
Citrix ADC and Citrix Gateway Security Bulletin for CVE-2023-3519, CVE-2023-3466, CVE-2023-3467
2023-07-18 13:43:46
nessus
nessus
Citrix ADC and Citrix Gateway Multiple Vulnerabilities (CTX561482)
2023-07-18 00:00:00
ics
ics
Threat Actors Exploiting Citrix CVE-2023-3519 to Implant Webshells
2023-07-20 12:00:00
rapid7blog
rapid7blog
Critical Zero-Day Vulnerability in Citrix NetScaler ADC and NetScaler Gateway
2023-07-18 15:28:45
thn
thn
Zero-Day Attacks Exploited Critical Vulnerability in Citrix ADC and Gateway
2023-07-19 03:21:00

CVSS3

8

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

9

Confidence

High

EPSS

0

Percentile

9.0%

JSON
Related for CVELIST:CVE-2023-3467
nvd1prion1cve1citrix1nessus1ics1rapid7blog1thn1