PT-2020-20074 · Citrix · Citrix Sd-Wan Center

Published

2020-11-16

Updated

2020-11-30

CVE-2020-8272

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Citrix SD-WAN Center versions prior to 11.2.2 Citrix SD-WAN Center versions prior to 11.1.2b Citrix SD-WAN Center versions prior to 10.2.8

Description The issue is related to an Authentication Bypass, which results in the exposure of SD-WAN functionality.

Recommendations For versions prior to 11.2.2, update to version 11.2.2 or later. For versions prior to 11.1.2b, update to version 11.1.2b or later. For versions prior to 10.2.8, update to version 10.2.8 or later.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2020-8272

Affected Products

Citrix Sd-Wan Center

PT-2020-20074 · Citrix · Citrix Sd-Wan Center

CVE-2020-8272

Weakness Enumeration

Related Identifiers

Affected Products

References · 5