Cross-site Scripting Vulnerability in Citrix NetScaler ADC and Gateway
CVE-2014-4346

Currently unrated

Summary

A cross-site scripting (XSS) vulnerability exists in the administration user interface of the Citrix NetScaler Application Delivery Controller and NetScaler Gateway, allowing remote attackers to inject arbitrary web scripts or HTML. This could result in unauthorized actions being performed within a user’s session or manipulation of the web content displayed to administrators, leading to potential data breach or unauthorized access to sensitive information.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.