Detections
Analytics

Citrix ADC and Citrix Gateway Multiple Vulnerabilities (CTX319135)

high Nessus Plugin ID 166617

Language:

Synopsis

The remote device is may be affected by multiple vulnerabilities.

Description

The remote Citrix ADC or Citrix Gateway device is version 11.1 before 11.1-65.22, 12.1 before 12.1-62.27 or 13.0 before 13.0-82.45. It is therefore affected by multiple vulnerabilities:

- A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway). A session fixation vulnerability exists when a SAML service provider is configured that could allow an attacker to hijack a session. (CVE-2021-22927)

 - A vulnerability has been discovered in Citrix ADC (formerly known as NetScaler ADC) and Citrix Gateway (formerly known as NetScaler Gateway). These vulnerabilities, if exploited, could lead to the limited available disk space on the appliances being fully consumed. (CVE-2021-22919)

Please refer to advisory CTX319135 for more information.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to version 11.1-65.22, 12.1-62.27, 13.0-82.45 or later.

See Also

https://support.citrix.com/article/CTX319135

Plugin Details

Severity: High

ID: 166617

File Name: citrix_adc_gateway_CTX319135.nasl

Version: 1.2

Type: combined

Family: CGI abuses

Published: 10/27/2022

Updated: 10/28/2022

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.2

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

CVSS Score Source: CVE-2021-22927

CVSS v3

Risk Factor: High

Base Score: 8.1

Temporal Score: 7.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/h:citrix:netscaler_gateway, cpe:/h:citrix:netscaler_application_delivery_controller

Required KB Items: Settings/ParanoidReport, Host/NetScaler/Detected

Exploit Ease: No known exploits are available

Patch Publication Date: 7/21/2021

Vulnerability Publication Date: 7/21/2021

Reference Information

CVE: CVE-2021-22919, CVE-2021-22927