CVE-2022-27511

CVE-2022-27511 affects Citrix Application Delivery Management (ADM). A remote, unauthenticated attacker could leverage an improper access-control flaw to reset the administrator password at the next device reboot, enabling access via SSH with default credentials. Patched versions exist (Citrix AD...

CVE-2019-17366

Citrix ADM vulnerability CVE-2019-17366 is an Improper Access Control/ authentication bypass affecting Citrix Application Delivery Management Server. Affected versions include Citrix ADM 12.0 and 12.1 prior to build 54.13, and Citrix ADM Cloud version 13.0 prior to build 41.20. The issue allows a...

CVE-2021-22920

CVE-2021-22920 affects Citrix ADC, Citrix Gateway, and Citrix SD-WAN WANOP Edition on models 4000-WO/4100-WO/5000-WO/5100-WO. The issue enables a phishing attack via a SAML authentication hijack to steal a valid user session. Affected versions include Citrix ADC/Gateway 12.1 before 12.1-62.25 and...

CVE-2022-27512

CVE-2022-27512 affects Citrix Application Delivery Management (ADM) server/agents (Citrix ADM 13.0 and 13.1). Root cause is a vulnerable FLEXlm license-manager implementation, enabling a remote attacker to disrupt the licensing service and block issuance/renewal of licenses, effectively a licensi...

CVE-2019-9548

Summary (CVE-2019-9548) Citrix Application Delivery Management (ADM) Agent vulnerable to an information disclosure due to improper access control. Affected: ADM Agent 12.1.x before build 50.33 (on-prem) and ADM Agent Cloud 13.0 before build 33.23. Impact: potential exposure of sensitive informati...