PT-2022-5429 · Citrix · Citrix Netscaler Application Delivery Controller+2
Published
2022-11-08
·
Updated
2025-12-02
·
CVE-2022-27510
CVSS v3.1
10
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Citrix ADC (formerly Citrix NetScaler Application Delivery Controller) and Citrix Gateway (formerly Citrix NetScaler Gateway) (affected versions not specified)
citrix application delivery controller firmware
citrix gateway
Description
A security issue exists in Citrix ADC and Citrix Gateway that allows an attacker to bypass authentication through an alternative path or channel. Successful exploitation could allow a remote attacker to elevate privileges and gain unauthorized access to Gateway user capabilities.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Authentication Bypass Using an Alternate Path or Channel
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Citrix Adc
Citrix Gateway
Citrix Netscaler Application Delivery Controller