CVE-2015-7997

Currently unrated

Key Information:

Vendor: Citrix
Status: Netscaler Service Delivery Appliance Service Vm
Vendor: CVE Published:; 17 November 2015

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the Nitro API in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 10.1 Build 133.9, 10.5 before Build 58.11, and 10.5.e before Build 56.1505.e on NetScaler Service Delivery Appliance Service VM (SVM) devices allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

http://www.securitytracker.com/id/1034167

vdb-entryx_refsource_SECTRACK

http://support.citrix.com/article/CTX202482

x_refsource_CONFIRM

Timeline

Vulnerability published
Nov 17, 2015
Vulnerability Reserved
Oct 28, 2015

Collectors

NVD DatabaseMitre Database