Disk Space Vulnerability in Citrix ADC and Gateway Products
CVE-2021-22919

7.5HIGH

Key Information:

Vendor
Citrix
Status
Citrix Adc, Citrix Gateway, Citrix Sd-wan Wanop
Vendor
CVE Published:
5 August 2021

Summary

A vulnerability has been identified in Citrix ADC and Citrix Gateway products that could allow an attacker to consume all available disk space. This scenario occurs due to improper management of disk allocation, potentially disrupting services and impacting system performance. Organizations are urged to implement recommended patches and monitor their environments proactively to mitigate potential risks associated with this vulnerability.

Affected Version(s)

Citrix ADC, Citrix Gateway, Citrix SD-WAN WANOP Citrix ADC and Citrix Gateway 13.0-82.45 and later releases of 13.0 Citrix ADC and Citrix Gateway 12.1-62.27 and later releases of 12.1 Citrix ADC and NetScaler Gateway 11.1-65.22 and later releases of 11.1 Citrix ADC 12.1-FIPS 12.1-55.247 and later releases of 12.1-FIPS Citrix SD-WAN WANOP Edition 11.4.0a and later releases of 11.4 Citrix SD-WAN WANOP Edition 11.3.2a and later releases of 11.3 Citrix SD-WAN WANOP Edition 11.2.3b and later releases of 11.2 Citrix SD-WAN WANOP Edition 10.2.9b and later releases of 10.2

References

https://support.citrix.com/article/CTX319135
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.