PT-2019-6313 · Citrix · Netscaler Sd-Wan+1

Publicado

2019-07-15

Atualizado

2025-11-06

CVE-2019-12991

CVSS v2.0

9.0

Alta

Vetor

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Citrix SD-WAN versions 10.2.x through 10.2.2 NetScaler SD-WAN versions 10.0.x through 10.0.7

Description The issue is related to improper input validation in the management interface component of NetScaler SD-WAN and Citrix SD-WAN, which can be exploited by a remote attacker to elevate privileges.

Recommendations For Citrix SD-WAN versions 10.2.x through 10.2.2, update to version 10.2.3 or later. For NetScaler SD-WAN versions 10.0.x through 10.0.7, update to version 10.0.8 or later.

Exploit

Correção

OS Command Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-78

Identificadores relacionados

BDU:2023-00812

CVE-2019-12991

Produtos afetados

Citrix Sd-Wan

Netscaler Sd-Wan

PT-2019-6313 · Citrix · Netscaler Sd-Wan+1

CVE-2019-12991

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 13