Cross-Site Scripting Vulnerabilities in Citrix NetScaler ADC and Gateway
CVE-2018-6811

6.1MEDIUM

Key Information:

Vendor

Citrix
Status
Netscaler Application Delivery Controller Firmware
Vendor
CVE Published:
6 March 2018

What is CVE-2018-6811?

Multiple Cross-Site Scripting (XSS) vulnerabilities exist in Citrix NetScaler ADC and Gateway versions, enabling remote attackers to exploit the Citrix NetScaler interface. If successfully executed, this could allow unauthorized injection of arbitrary web script or HTML, potentially compromising the security of the user and their data.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://support.citrix.com/article/CTX232161
x_refsource_CONFIRM
http://www.securitytracker.com/id/1040440
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
6.1
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.