PT-2018-14493 · Citrix · Citrix Netscaler Gateway

Published

2018-10-24

Updated

2018-12-06

CVE-2018-18517

CVSS v3.1

4.8

Medium

Vector

AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Citrix NetScaler Gateway versions 10.5.x through 10.5.68.002 Citrix NetScaler Gateway versions 11.1.x through 11.1.58.003 Citrix NetScaler Gateway versions 12.0.x through 12.0.57.6 Citrix NetScaler Gateway versions 12.1.x through 12.1.48

Description The issue is related to a Cross-Site Scripting (XSS) problem. XSS is a type of security flaw that allows an attacker to inject malicious scripts into a website, potentially leading to unauthorized access or control.

Recommendations For versions 10.5.x, update to 10.5.69.003 or later. For versions 11.1.x, update to 11.1.59.004 or later. For versions 12.0.x, update to 12.0.58.7 or later. For versions 12.1.x, update to 12.1.49.1 or later.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2018-18517

Affected Products

Citrix Netscaler Gateway

PT-2018-14493 · Citrix · Citrix Netscaler Gateway

CVE-2018-18517

Weakness Enumeration

Related Identifiers

Affected Products

References · 5