Information Exposure Vulnerability in Citrix SD-WAN and NetScaler SD-WAN Products
CVE-2018-17447

7.5HIGH

Key Information:

Vendor: Citrix
Status: Netscaler Sd-wan
Vendor: CVE Published:; 23 October 2018

Summary

An information exposure vulnerability has been identified in Citrix SD-WAN and NetScaler SD-WAN products. This vulnerability allows sensitive information to be inadvertently revealed through log files, potentially enabling unauthorized access to critical data. It affects multiple versions of Citrix SD-WAN and specific versions of NetScaler SD-WAN, making it essential for users to review their security settings and apply necessary updates to mitigate potential risks. For more details, visit the Citrix support article and check SecurityFocus.

References

https://support.citrix.com/article/CTX236992

x_refsource_CONFIRM

http://www.securityfocus.com/bid/105711

vdb-entryx_refsource_BID

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Oct 23, 2018
Vulnerability Reserved
Sep 25, 2018