Certificate Validation Vulnerability in Citrix NetScaler Application Delivery Controller and Gateway
CVE-2014-2882

Currently unrated

Key Information:

Vendor: Citrix
Status: Netscaler Access Gateway Firmware; Netscaler Application Delivery Controller Firmware; Netscaler Access Gateway
Vendor: CVE Published:; 1 May 2014

Summary

An unspecified vulnerability exists in the management GUI of Citrix NetScaler Application Delivery Controller and NetScaler Gateway, which affects versions prior to 9.3-66.5 and 10.1-122.17. This flaw is related to improper certificate validation and may leave systems susceptible to various attacks. Users are advised to review and apply the latest patches to mitigate potential risks associated with this vulnerability.

References

http://www.securitytracker.com/id/1030180

vdb-entryx_refsource_SECTRACK

http://support.citrix.com/article/CTX140651

x_refsource_CONFIRM

Timeline

Vulnerability published
May 1, 2014
Vulnerability Reserved
Apr 17, 2014