6 matches found
CVE-2020-8300
Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or Citrix Gateway mus...
Citrix ADC and Citrix NetScaler Gateway Multiple Vulnerabilities (CTX297155)
The remote Citrix ADC or Citrix NetScaler Gateway device is version 11.1.x prior to 11.1-65.20, 12.1.x prior to 12.1-62.23, 12.1-FIPS prior to 12.1-55.238 or 13.0.x prior to 13.0-82.41. It is, therefore, affected by multiple vulnerabilities: - Network-based denial-of-service from within the same...
CVE-2020-8300
CVE-2020-8300 affects Citrix ADC and Citrix NetScaler Gateway (multiple versions) and enables SAML authentication hijack via phishing to steal a valid user session when the appliance is configured as a SAML SP or IdP. Affected versions include 13.0-82.41, 12.1-62.23, 11.1-65.20 and 12.1-FIPS befo...
Exploit for Improper Access Control in Citrix Gateway
Detect Citrix ADC SAML action or SAML iDP Profile config vulnera...
Secure Hub shows an error and fails to connect after upgrading to a fixed firmware build to address CVE-2020-8299/ CVE-2020-8300
Secure Hub shows an error and fails to connect after upgrading to a fixed firmware build to addressCVE-2020-8299/ CVE-2020-8300. Users can no longer log in to Secure Hub or if already logged in cannot refresh policies...
Vulnerabilities fixed in Citrix ADC and Citrix Gateway
Two vulnerabilities have been fixed in Citrix ADC and Citrix Gateway. A malicious party could potentially exploit the vulnerability with CVE attribute CVE-2020-8299 potentially exploit it to cause a denial-of-service from the same local network segment. The vulnerability with CVE attribute...