4 matches found
CVE-2024-6235
CVE-2024-6235 is a NetScaler vulnerability in the NetScaler Console (and related components) that enables sensitive information disclosure. It affects NetScaler Console versions 14.1 before 14.1-25.53 (and related console/SDX/agent lines for CVE-2024-6236); exploitation can reveal sensitive data ...
CVE-2024-6236
CVE-2024-6236 is a Denial of Service affecting Citrix NetScaler Console, NetScaler Agent, and NetScaler SDX (SVM). Citrix CTX677998 lists affected versions: Console 14.1 before 14.1-25.53; Console 13.1 before 13.1-53.22; Console 13.0 before 13.0-92.31; SDX/Agent likewise limited to the same or re...
CVE-2024-12284
CVE-2024-12284 affects Citrix NetScaler Console and NetScaler Agent. The issue is an authenticated privilege escalation via an Arbitrary File Write (ZipSlip) vulnerability in the StyleBook import flow, where an archive is unpacked without validating paths, allowing writing as root and potentially...
CVE-2025-4365
The CVE-2025-4365 issue affects NetScaler Console and NetScaler SDX (SVM). It is an authenticated Arbitrary File Read vulnerability in the download API (nitro/v1/download), where input validation does not properly constrain the file path, enabling an admin to read arbitrary files on the system. V...