CVE-2023-24487

CVE-2023-24487 describes an Arbitrary file read in Citrix ADC and Citrix Gateway. The vulnerability originates from access to NSIP/SNIP via the management interface and affects: Citrix ADC/Gateway 12.1 before 12.1-65.35, 12.1-FIPS before 12.1-55.296, 13.0 before 13.0-90.11, and 13.1 before 13.1-4...

CVE-2023-24488

CVE-2023-24488 is a cross-site scripting vulnerability affecting Citrix ADC and Citrix Gateway. Public data show that versions before 13.1 and the listed sub-versions (13.1-45.61, 13.0-90.11, 12.1-65.35) contain a flaw due to improper input/URL parameter validation that can cause script execution...

CVE-2022-27508

CVE-2022-27508 is an unauthenticated denial-of-service vulnerability affecting Citrix ADC and Citrix Gateway, specifically the 12.1-64.16 release. The CVE is detailed in Citrix Security Bulletin CTX457048, which confirms the DoS impact and that Citrix has published fixes. Other connected sources ...

CVE-2022-27507

CVE-2022-27507 affects Citrix ADC and Citrix Gateway. Affected conditions require DTLS enabled and either HDX Insight for EDT traffic or SmartControl configured, leading to an authenticated denial-of-service. Vulnerable versions include Citrix ADC/Gateway 12.1 prior to 12.1-64.17, 13.0 prior to 1...