Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:13 p.m.7 views

CVE-2020-8300

Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or Citrix Gateway mus...

6.5CVSS7AI score0.0301EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2021/06/18 12:0 a.m.84 views

Citrix ADC and Citrix NetScaler Gateway Multiple Vulnerabilities (CTX297155)

The remote Citrix ADC or Citrix NetScaler Gateway device is version 11.1.x prior to 11.1-65.20, 12.1.x prior to 12.1-62.23, 12.1-FIPS prior to 12.1-55.238 or 13.0.x prior to 13.0-82.41. It is, therefore, affected by multiple vulnerabilities: - Network-based denial-of-service from within the same...

6.5CVSS6.5AI score0.0301EPSS
Exploits1References3
CVE
CVE
added 2021/06/16 1:8 p.m.72 views

CVE-2020-8300

CVE-2020-8300 affects Citrix ADC and Citrix NetScaler Gateway (multiple versions) and enables SAML authentication hijack via phishing to steal a valid user session when the appliance is configured as a SAML SP or IdP. Affected versions include 13.0-82.41, 12.1-62.23, 11.1-65.20 and 12.1-FIPS befo...

6.5CVSS6.5AI score0.0301EPSS
Exploits1References1Affected Software2
GithubExploit
GithubExploit
added 2021/06/15 7:21 a.m.134 views

Exploit for Improper Access Control in Citrix Gateway

Detect Citrix ADC SAML action or SAML iDP Profile config vulnera...

6.5CVSS6.6AI score0.0301EPSS
Exploits1
Citrix
Citrix
added 2021/06/11 12:0 a.m.16 views

Secure Hub shows an error and fails to connect after upgrading to a fixed firmware build to address CVE-2020-8299/ CVE-2020-8300

Secure Hub shows an error and fails to connect after upgrading to a fixed firmware build to addressCVE-2020-8299/ CVE-2020-8300. Users can no longer log in to Secure Hub or if already logged in cannot refresh policies...

6.5CVSS6.6AI score0.0301EPSS
Exploits1
NCSC
NCSC
added 2021/06/08 12:0 a.m.7 views

Vulnerabilities fixed in Citrix ADC and Citrix Gateway

Two vulnerabilities have been fixed in Citrix ADC and Citrix Gateway. A malicious party could potentially exploit the vulnerability with CVE attribute CVE-2020-8299 potentially exploit it to cause a denial-of-service from the same local network segment. The vulnerability with CVE attribute...

6.5CVSS6.7AI score0.0301EPSS
Exploits1
Rows per page
Query Builder