Authentication Bypass Vulnerability in Citrix SD-WAN Center
CVE-2020-8272

7.5HIGH

Key Information:

Vendor: Citrix
Status: Citrix Sd-wan Center
Vendor: CVE Published:; 16 November 2020

What is CVE-2020-8272?

An authentication bypass vulnerability exists in Citrix SD-WAN Center, allowing unauthorized access to sensitive SD-WAN functionalities. This issue affects multiple versions prior to 11.2.2, 11.1.2b, and 10.2.8, potentially exposing critical operational controls to malicious entities. Proper remediation is essential to safeguard against unauthorized access and ensure secure network management.

Affected Version(s)

Citrix SD-WAN Center Fixed in 11.2.2, 11.1.2b and 10.2.8

References

https://support.citrix.com/article/CTX285061

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 16, 2020
Vulnerability Reserved
Jan 28, 2020