Incorrect Access Control in Citrix Application Delivery Management Products
CVE-2019-9548

10CRITICAL

Key Information:

Vendor: Citrix
Status: Application Delivery Management
Vendor: CVE Published:; 5 June 2019

What is CVE-2019-9548?

Citrix Application Delivery Management (ADM) versions 12.1.x before 12.1.50.33 are affected by an incorrect access control vulnerability, which allows unauthorized users to access sensitive areas and functions within the application. This security flaw could be exploited by attackers to gain sensitive information or perform unauthorized actions. It is critical for organizations using Citrix ADM to apply the necessary patches to safeguard their systems against potential breaches.

References

https://support.citrix.com/v1/search?searchQuery=%22%22&l...

x_refsource_MISC

https://support.citrix.com/article/CTX247738

x_refsource_CONFIRM

CVSS V3.1

Score:

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 5, 2019
Vulnerability Reserved
Mar 1, 2019