PT-2020-20073 · Citrix · Citrix Sd-Wan Center

Published

2020-11-16

Updated

2020-11-30

CVE-2020-8271

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Citrix SD-WAN Center versions prior to 11.2.2 Citrix SD-WAN Center versions prior to 11.1.2b Citrix SD-WAN Center versions prior to 10.2.8

Description The issue allows for unauthenticated remote code execution with root privileges.

Recommendations For versions prior to 11.2.2, update to version 11.2.2 or later. For versions prior to 11.1.2b, update to version 11.1.2b or later. For versions prior to 10.2.8, update to version 10.2.8 or later.

Fix

Relative Path Traversal

Path traversal

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-23CWE-22

Related Identifiers

CVE-2020-8271

Affected Products

Citrix Sd-Wan Center

PT-2020-20073 · Citrix · Citrix Sd-Wan Center

CVE-2020-8271

Weakness Enumeration

Related Identifiers

Affected Products

References · 4