Authentication Bypass Vulnerability in Citrix NetScaler Application Delivery Controller
CVE-2014-8580

Currently unrated

Key Information:

Vendor: Citrix
Status: Netscaler Application Delivery Controller Firmware; Netscaler Gateway Firmware
Vendor: CVE Published:; 7 November 2014

Summary

This vulnerability allows remote authenticated users on specific versions of Citrix NetScaler Application Delivery Controller and Gateway to gain unauthorized access to the network resources of other users. The issue arises due to improper configurations, which exposes sensitive data and can lead to significant security risks. Users are encouraged to review their system configurations and apply necessary patches to limit exposure.

References

http://support.citrix.com/article/CTX200254

x_refsource_CONFIRM

http://secunia.com/advisories/62114

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/98661

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Nov 7, 2014
Vulnerability Reserved
Oct 31, 2014