Information Exposure Vulnerability in Citrix SD-WAN and NetScaler SD-WAN Products
CVE-2018-17447

7.5HIGH

Key Information:

Vendor
Citrix
Vendor
CVE Published:
23 October 2018

Summary

An information exposure vulnerability has been identified in Citrix SD-WAN and NetScaler SD-WAN products. This vulnerability allows sensitive information to be inadvertently revealed through log files, potentially enabling unauthorized access to critical data. It affects multiple versions of Citrix SD-WAN and specific versions of NetScaler SD-WAN, making it essential for users to review their security settings and apply necessary updates to mitigate potential risks. For more details, visit the Citrix support article and check SecurityFocus.

References

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.