Directory Traversal Vulnerability in Citrix SD-WAN and NetScaler SD-WAN
CVE-2018-17444

7.5HIGH

Key Information:

Vendor: Citrix
Status: Netscaler Sd-wan
Vendor: CVE Published:; 23 October 2018

What is CVE-2018-17444?

A Directory Traversal vulnerability exists in Citrix SD-WAN, which may allow an attacker to access restricted directories and execute unauthorized commands. This issue affects various versions of Citrix SD-WAN and NetScaler SD-WAN, potentially compromising sensitive data and system integrity. Users are encouraged to update to the latest available versions to mitigate this risk.

References

https://support.citrix.com/article/CTX236992

x_refsource_CONFIRM

http://www.securityfocus.com/bid/105711

vdb-entryx_refsource_BID

EPSS Score

5% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 23, 2018
Vulnerability Reserved
Sep 25, 2018