CVE-2014-4346

Currently unrated

Key Information:

Vendor: Citrix
Status: Netscaler Application Delivery Controller Firmware; Netscaler Application Delivery Controller
Vendor: CVE Published:; 16 July 2014

Summary

Cross-site scripting (XSS) vulnerability in administration user interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway (formerly Access Gateway Enterprise Edition) 10.1 before 10.1-126.12 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

https://www.sec-consult.com/fxdata/seccons/prod/temedia/a...

x_refsource_MISC

http://www.securitytracker.com/id/1030573

vdb-entryx_refsource_SECTRACK

http://support.citrix.com/article/CTX140863

x_refsource_CONFIRM

Timeline

Vulnerability published
Jul 16, 2014
Vulnerability Reserved
Jun 20, 2014