Cross-Site Scripting Vulnerability in Citrix NetScaler Gateway
CVE-2014-1899
Currently unrated
Key Information:
- Vendor
- Citrix
- Vendor
- CVE Published:
- 2 May 2014
Summary
A Cross-Site Scripting (XSS) vulnerability exists in Citrix NetScaler Gateway that allows remote attackers to inject arbitrary web scripts or HTML through unspecified vectors. This flaw affects versions of NetScaler Gateway 9.x prior to 9.3.66.5 and 10.x prior to 10.1.123.9, potentially enabling attackers to execute malicious scripts in the context of the user's session, thus compromising sensitive user data and functionalities.
References
Timeline
Vulnerability published
Vulnerability Reserved