Vulnerability-Lookup

CVE-2023-6548 (GCVE-0-2023-6548)

Vulnerability from cvelistv5 – Published: 2024-01-17 20:11 – Updated: 2025-10-21 23:05

CISA KEV

Summary

Severity ?

5.5 (Medium)


                        
                          CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

CWE

CWE-94 - Improper Control of Generation of Code ('Code Injection')

Assigner

Citrix

References

URL

Tags

https://support.citrix.com/article/CTX584986/nets…

Impacted products

Vendor

Product

Version

Cloud Software Group

NetScaler ADC 

Affected: 14.1 , < 12.35 (patch)
Affected: 13.1 , < 51.15 (patch)
Affected: 13.0 , < 92.21 (patch)
Affected: 13.1-FIPS , < 37.176 (patch)
Affected: 12.1-FIPS , < 55.302 (patch)
Affected: 12.1-NDcPP , < 55.302 (patch)

Cloud Software Group

NetScaler Gateway

Affected: 14.1 , < 12.35 (patch)
Affected: 13.1 , < 51.15 (patch)
Affected: 13.0 , < 92.21 (patch)

CISA KEV

Known Exploited Vulnerability - GCVE BCP-07 Compliant

KEV entry ID: 80c176d4-1003-4516-8d2a-a5970fd9136b

Vulnerability ID: CVE-2023-6548

Status: Confirmed

Status Updated: 2024-01-17 00:00 UTC

Exploited: Yes

Timestamps

First Seen: 2024-01-17

Asserted: 2024-01-17

Scope

Notes: KEV entry: Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability | Affected: Citrix / NetScaler ADC and NetScaler Gateway | Description: Citrix NetScaler ADC and NetScaler Gateway contain a code injection vulnerability that allows for authenticated remote code execution on the management interface with access to NSIP, CLIP, or SNIP. | Required action: Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable. | Due date: 2024-01-24 | Known ransomware campaign use (KEV): Unknown | Notes (KEV): https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549; https://nvd.nist.gov/vuln/detail/CVE-2023-6548

Evidence

Type: Vendor Report

Signal: Successful Exploitation

Confidence: 80%

Source: cisa-kev

Details

Cwes	CWE-94
Feed	CISA Known Exploited Vulnerabilities Catalog
Product	NetScaler ADC and NetScaler Gateway
Due Date	2024-01-24
Date Added	2024-01-17
Vendorproject	Citrix
Vulnerabilityname	Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability
Knownransomwarecampaignuse	Unknown

References

CVE-2023-6548

Created: 2026-02-02 12:26 UTC | Updated: 2026-02-02 12:26 UTC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "affected": [
          {
            "cpes": [
              "cpe:2.3:a:citrix:netscaler_application_delivery_controller:14.1:*:*:*:-:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "netscaler_application_delivery_controller",
            "vendor": "citrix",
            "versions": [
              {
                "lessThan": "14.1-12.35",
                "status": "affected",
                "version": "14.1",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:citrix:netscaler_application_delivery_controller:13.1:*:*:*:-:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "netscaler_application_delivery_controller",
            "vendor": "citrix",
            "versions": [
              {
                "lessThan": "13.1-51.15",
                "status": "affected",
                "version": "13.1",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:citrix:netscaler_application_delivery_controller:13.0:*:*:*:-:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "netscaler_application_delivery_controller",
            "vendor": "citrix",
            "versions": [
              {
                "lessThan": "13.0-92.21",
                "status": "affected",
                "version": "13.0",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:citrix:netscaler_application_delivery_controller:13.1:*:*:*:fips:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "netscaler_application_delivery_controller",
            "vendor": "citrix",
            "versions": [
              {
                "lessThan": "13.1-37.176",
                "status": "affected",
                "version": "13.1",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:citrix:netscaler_application_delivery_controller:12.1:*:*:*:fips:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "netscaler_application_delivery_controller",
            "vendor": "citrix",
            "versions": [
              {
                "lessThan": "12.1-55.302",
                "status": "affected",
                "version": "12.1",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:citrix:netscaler_application_delivery_controller:12.1:*:*:*:ndcpp:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "netscaler_application_delivery_controller",
            "vendor": "citrix",
            "versions": [
              {
                "lessThan": "12.1-55.302",
                "status": "affected",
                "version": "12.1",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:citrix:netscaler_gateway:14.1:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "netscaler_gateway",
            "vendor": "citrix",
            "versions": [
              {
                "lessThan": "14.1-12.35",
                "status": "affected",
                "version": "14.1",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:citrix:netscaler_gateway:13.1:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "netscaler_gateway",
            "vendor": "citrix",
            "versions": [
              {
                "lessThan": "13.1-51.15",
                "status": "affected",
                "version": "13.1",
                "versionType": "custom"
              }
            ]
          },
          {
            "cpes": [
              "cpe:2.3:a:citrix:netscaler_gateway:13.0:*:*:*:*:*:*:*"
            ],
            "defaultStatus": "unknown",
            "product": "netscaler_gateway",
            "vendor": "citrix",
            "versions": [
              {
                "lessThan": "13.0-92.21",
                "status": "affected",
                "version": "13.0",
                "versionType": "custom"
              }
            ]
          }
        ],
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-6548",
                "options": [
                  {
                    "Exploitation": "active"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "total"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-01-18T14:00:57.375485Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          },
          {
            "other": {
              "content": {
                "dateAdded": "2024-01-17",
                "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-6548"
              },
              "type": "kev"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-10-21T23:05:28.157Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "references": [
          {
            "tags": [
              "government-resource"
            ],
            "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-6548"
          }
        ],
        "timeline": [
          {
            "lang": "en",
            "time": "2024-01-17T00:00:00+00:00",
            "value": "CVE-2023-6548 added to CISA KEV"
          }
        ],
        "title": "CISA ADP Vulnrichment"
      },
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T08:35:14.029Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "unaffected",
          "product": "NetScaler ADC\u202f",
          "vendor": "Cloud Software Group",
          "versions": [
            {
              "lessThan": "12.35",
              "status": "affected",
              "version": "14.1",
              "versionType": "patch"
            },
            {
              "lessThan": "51.15",
              "status": "affected",
              "version": "13.1",
              "versionType": "patch"
            },
            {
              "lessThan": "92.21",
              "status": "affected",
              "version": "13.0 ",
              "versionType": "patch"
            },
            {
              "lessThan": "37.176",
              "status": "affected",
              "version": " 13.1-FIPS",
              "versionType": "patch"
            },
            {
              "lessThan": "55.302",
              "status": "affected",
              "version": "12.1-FIPS",
              "versionType": "patch"
            },
            {
              "lessThan": "55.302",
              "status": "affected",
              "version": "12.1-NDcPP",
              "versionType": "patch"
            }
          ]
        },
        {
          "defaultStatus": "unaffected",
          "product": "NetScaler Gateway",
          "vendor": "Cloud Software Group",
          "versions": [
            {
              "lessThan": "12.35",
              "status": "affected",
              "version": "14.1",
              "versionType": "patch"
            },
            {
              "lessThan": "51.15",
              "status": "affected",
              "version": "13.1",
              "versionType": "patch"
            },
            {
              "lessThan": "92.21",
              "status": "affected",
              "version": "13.0",
              "versionType": "patch"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eImproper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eallows an attacker with\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e\u0026nbsp;access\u003c/span\u003e\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e\u0026nbsp;to NSIP, CLIP or SNIP with management interface to perform\u003c/span\u003e\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eAuthenticated (low privileged) remote code execution on Management Interface.\u003c/span\u003e\u003c/span\u003e\u003c/span\u003e"
            }
          ],
          "value": "Improper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\u00a0allows an attacker with\u00a0access\u00a0to NSIP, CLIP or SNIP with management interface to perform\u00a0Authenticated (low privileged) remote code execution on Management Interface."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-94",
              "description": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-01-18T01:12:54.917Z",
        "orgId": "e437aed5-38e0-4fa3-a98b-cb73e7acaec6",
        "shortName": "Citrix"
      },
      "references": [
        {
          "url": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "e437aed5-38e0-4fa3-a98b-cb73e7acaec6",
    "assignerShortName": "Citrix",
    "cveId": "CVE-2023-6548",
    "datePublished": "2024-01-17T20:11:18.462Z",
    "dateReserved": "2023-12-06T11:01:54.643Z",
    "dateUpdated": "2025-10-21T23:05:28.157Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "cisa_known_exploited": {
      "cveID": "CVE-2023-6548",
      "cwes": "[\"CWE-94\"]",
      "dateAdded": "2024-01-17",
      "dueDate": "2024-01-24",
      "knownRansomwareCampaignUse": "Unknown",
      "notes": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549;   https://nvd.nist.gov/vuln/detail/CVE-2023-6548",
      "product": "NetScaler ADC and NetScaler Gateway",
      "requiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
      "shortDescription": "Citrix NetScaler ADC and NetScaler Gateway contain a code injection vulnerability that allows for authenticated remote code execution on the management interface with access to NSIP, CLIP, or SNIP.",
      "vendorProject": "Citrix",
      "vulnerabilityName": "Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability"
    },
    "fkie_nvd": {
      "cisaActionDue": "2024-01-24",
      "cisaExploitAdd": "2024-01-17",
      "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
      "cisaVulnerabilityName": "Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability",
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*\", \"versionStartIncluding\": \"12.1\", \"versionEndExcluding\": \"12.1-55.302\", \"matchCriteriaId\": \"E5672003-8E6B-4316-B5C9-FE436080ADD1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:ndcpp:*:*:*\", \"versionStartIncluding\": \"12.1\", \"versionEndExcluding\": \"12.1-55.302\", \"matchCriteriaId\": \"D1A11ABD-4F45-4BA9-B30B-F1D8A612CC15\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*\", \"versionStartIncluding\": \"13.0\", \"versionEndExcluding\": \"13.0-92.21\", \"matchCriteriaId\": \"FC0A5AAC-62DD-416A-A801-A7A95D5EF73C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*\", \"versionStartIncluding\": \"13.1\", \"versionEndExcluding\": \"13.1-37.176\", \"matchCriteriaId\": \"8C8A6B95-8338-4EE7-A6EC-7D84AEDC4AF3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*\", \"versionStartIncluding\": \"13.1\", \"versionEndExcluding\": \"13.1-51.15\", \"matchCriteriaId\": \"3CF77D9D-FC89-493D-B97D-F9699D182F54\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*\", \"versionStartIncluding\": \"14.1\", \"versionEndExcluding\": \"14.1-12.35\", \"matchCriteriaId\": \"62CD82CF-9013-4E54-B175-19B804A351AA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.0\", \"versionEndExcluding\": \"13.0-92.21\", \"matchCriteriaId\": \"68E1F810-ABCD-40A7-A8C1-4E8727799C7C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"13.1\", \"versionEndExcluding\": \"13.1-51.15\", \"matchCriteriaId\": \"E870C309-D5CD-4181-9DEB-4833DE2EAEB7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"14.1\", \"versionEndExcluding\": \"14.1-12.35\", \"matchCriteriaId\": \"2836707F-A36F-479E-BFDC-CF55AEFC37EE\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Improper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\\u00a0allows an attacker with\\u00a0access\\u00a0to NSIP, CLIP or SNIP with management interface to perform\\u00a0Authenticated (low privileged) remote code execution on Management Interface.\"}, {\"lang\": \"es\", \"value\": \"El control inadecuado de la generaci\\u00f3n de c\\u00f3digo (\\\"inyecci\\u00f3n de c\\u00f3digo\\\") en NetScaler ADC y NetScaler Gateway permite a un atacante con acceso a NSIP, CLIP o SNIP con interfaz de administraci\\u00f3n realizar una ejecuci\\u00f3n remota de c\\u00f3digo autenticado (con privilegios bajos) en Management Interface.\"}]",
      "id": "CVE-2023-6548",
      "lastModified": "2024-11-21T08:44:04.570",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"secure@citrix.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"ADJACENT_NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"LOW\"}, \"exploitabilityScore\": 2.1, \"impactScore\": 3.4}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 8.8, \"baseSeverity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 5.9}]}",
      "published": "2024-01-17T20:15:50.627",
      "references": "[{\"url\": \"https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549\", \"source\": \"secure@citrix.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "secure@citrix.com",
      "vulnStatus": "Undergoing Analysis",
      "weaknesses": "[{\"source\": \"secure@citrix.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-94\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-6548\",\"sourceIdentifier\":\"secure@citrix.com\",\"published\":\"2024-01-17T20:15:50.627\",\"lastModified\":\"2025-10-24T13:42:45.177\",\"vulnStatus\":\"Analyzed\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\u00a0allows an attacker with\u00a0access\u00a0to NSIP, CLIP or SNIP with management interface to perform\u00a0Authenticated (low privileged) remote code execution on Management Interface.\"},{\"lang\":\"es\",\"value\":\"El control inadecuado de la generaci\u00f3n de c\u00f3digo (\\\"inyecci\u00f3n de c\u00f3digo\\\") en NetScaler ADC y NetScaler Gateway permite a un atacante con acceso a NSIP, CLIP o SNIP con interfaz de administraci\u00f3n realizar una ejecuci\u00f3n remota de c\u00f3digo autenticado (con privilegios bajos) en Management Interface.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secure@citrix.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"ADJACENT_NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"LOW\"},\"exploitabilityScore\":2.1,\"impactScore\":3.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":5.9}]},\"cisaExploitAdd\":\"2024-01-17\",\"cisaActionDue\":\"2024-01-24\",\"cisaRequiredAction\":\"Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.\",\"cisaVulnerabilityName\":\"Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability\",\"weaknesses\":[{\"source\":\"secure@citrix.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-94\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*\",\"versionStartIncluding\":\"12.1\",\"versionEndExcluding\":\"12.1-55.302\",\"matchCriteriaId\":\"E5672003-8E6B-4316-B5C9-FE436080ADD1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:ndcpp:*:*:*\",\"versionStartIncluding\":\"12.1\",\"versionEndExcluding\":\"12.1-55.302\",\"matchCriteriaId\":\"D1A11ABD-4F45-4BA9-B30B-F1D8A612CC15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"13.0\",\"versionEndExcluding\":\"13.0-92.21\",\"matchCriteriaId\":\"FC0A5AAC-62DD-416A-A801-A7A95D5EF73C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*\",\"versionStartIncluding\":\"13.1\",\"versionEndExcluding\":\"13.1-37.176\",\"matchCriteriaId\":\"8C8A6B95-8338-4EE7-A6EC-7D84AEDC4AF3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"13.1\",\"versionEndExcluding\":\"13.1-51.15\",\"matchCriteriaId\":\"3CF77D9D-FC89-493D-B97D-F9699D182F54\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"14.1\",\"versionEndExcluding\":\"14.1-12.35\",\"matchCriteriaId\":\"62CD82CF-9013-4E54-B175-19B804A351AA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.0\",\"versionEndExcluding\":\"13.0-92.21\",\"matchCriteriaId\":\"68E1F810-ABCD-40A7-A8C1-4E8727799C7C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"13.1\",\"versionEndExcluding\":\"13.1-51.15\",\"matchCriteriaId\":\"E870C309-D5CD-4181-9DEB-4833DE2EAEB7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"14.1\",\"versionEndExcluding\":\"14.1-12.35\",\"matchCriteriaId\":\"2836707F-A36F-479E-BFDC-CF55AEFC37EE\"}]}]}],\"references\":[{\"url\":\"https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549\",\"source\":\"secure@citrix.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-6548\",\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"tags\":[\"US Government Resource\"]}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T08:35:14.029Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-6548\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"active\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-01-18T14:00:57.375485Z\"}}}, {\"other\": {\"type\": \"kev\", \"content\": {\"dateAdded\": \"2024-01-17\", \"reference\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-6548\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:14.1:*:*:*:-:*:*:*\"], \"vendor\": \"citrix\", \"product\": \"netscaler_application_delivery_controller\", \"versions\": [{\"status\": \"affected\", \"version\": \"14.1\", \"lessThan\": \"14.1-12.35\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:13.1:*:*:*:-:*:*:*\"], \"vendor\": \"citrix\", \"product\": \"netscaler_application_delivery_controller\", \"versions\": [{\"status\": \"affected\", \"version\": \"13.1\", \"lessThan\": \"13.1-51.15\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:13.0:*:*:*:-:*:*:*\"], \"vendor\": \"citrix\", \"product\": \"netscaler_application_delivery_controller\", \"versions\": [{\"status\": \"affected\", \"version\": \"13.0\", \"lessThan\": \"13.0-92.21\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:13.1:*:*:*:fips:*:*:*\"], \"vendor\": \"citrix\", \"product\": \"netscaler_application_delivery_controller\", \"versions\": [{\"status\": \"affected\", \"version\": \"13.1\", \"lessThan\": \"13.1-37.176\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:12.1:*:*:*:fips:*:*:*\"], \"vendor\": \"citrix\", \"product\": \"netscaler_application_delivery_controller\", \"versions\": [{\"status\": \"affected\", \"version\": \"12.1\", \"lessThan\": \"12.1-55.302\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:citrix:netscaler_application_delivery_controller:12.1:*:*:*:ndcpp:*:*:*\"], \"vendor\": \"citrix\", \"product\": \"netscaler_application_delivery_controller\", \"versions\": [{\"status\": \"affected\", \"version\": \"12.1\", \"lessThan\": \"12.1-55.302\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:citrix:netscaler_gateway:14.1:*:*:*:*:*:*:*\"], \"vendor\": \"citrix\", \"product\": \"netscaler_gateway\", \"versions\": [{\"status\": \"affected\", \"version\": \"14.1\", \"lessThan\": \"14.1-12.35\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:citrix:netscaler_gateway:13.1:*:*:*:*:*:*:*\"], \"vendor\": \"citrix\", \"product\": \"netscaler_gateway\", \"versions\": [{\"status\": \"affected\", \"version\": \"13.1\", \"lessThan\": \"13.1-51.15\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:citrix:netscaler_gateway:13.0:*:*:*:*:*:*:*\"], \"vendor\": \"citrix\", \"product\": \"netscaler_gateway\", \"versions\": [{\"status\": \"affected\", \"version\": \"13.0\", \"lessThan\": \"13.0-92.21\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2024-01-17T00:00:00+00:00\", \"value\": \"CVE-2023-6548 added to CISA KEV\"}], \"references\": [{\"url\": \"https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-6548\", \"tags\": [\"government-resource\"]}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-06-25T17:09:55.566Z\"}}], \"cna\": {\"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 5.5, \"attackVector\": \"ADJACENT_NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L\", \"integrityImpact\": \"LOW\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"LOW\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"Cloud Software Group\", \"product\": \"NetScaler ADC\\u202f\", \"versions\": [{\"status\": \"affected\", \"version\": \"14.1\", \"lessThan\": \"12.35\", \"versionType\": \"patch\"}, {\"status\": \"affected\", \"version\": \"13.1\", \"lessThan\": \"51.15\", \"versionType\": \"patch\"}, {\"status\": \"affected\", \"version\": \"13.0 \", \"lessThan\": \"92.21\", \"versionType\": \"patch\"}, {\"status\": \"affected\", \"version\": \" 13.1-FIPS\", \"lessThan\": \"37.176\", \"versionType\": \"patch\"}, {\"status\": \"affected\", \"version\": \"12.1-FIPS\", \"lessThan\": \"55.302\", \"versionType\": \"patch\"}, {\"status\": \"affected\", \"version\": \"12.1-NDcPP\", \"lessThan\": \"55.302\", \"versionType\": \"patch\"}], \"defaultStatus\": \"unaffected\"}, {\"vendor\": \"Cloud Software Group\", \"product\": \"NetScaler Gateway\", \"versions\": [{\"status\": \"affected\", \"version\": \"14.1\", \"lessThan\": \"12.35\", \"versionType\": \"patch\"}, {\"status\": \"affected\", \"version\": \"13.1\", \"lessThan\": \"51.15\", \"versionType\": \"patch\"}, {\"status\": \"affected\", \"version\": \"13.0\", \"lessThan\": \"92.21\", \"versionType\": \"patch\"}], \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\\u00a0allows an attacker with\\u00a0access\\u00a0to NSIP, CLIP or SNIP with management interface to perform\\u00a0Authenticated (low privileged) remote code execution on Management Interface.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003eImproper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\u0026nbsp;\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003eallows an attacker with\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003e\u0026nbsp;access\u003c/span\u003e\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003e\u0026nbsp;to NSIP, CLIP or SNIP with management interface to perform\u003c/span\u003e\u0026nbsp;\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003eAuthenticated (low privileged) remote code execution on Management Interface.\u003c/span\u003e\u003c/span\u003e\u003c/span\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-94\", \"description\": \"CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"e437aed5-38e0-4fa3-a98b-cb73e7acaec6\", \"shortName\": \"Citrix\", \"dateUpdated\": \"2024-01-18T01:12:54.917Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-6548\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-10-21T23:05:28.157Z\", \"dateReserved\": \"2023-12-06T11:01:54.643Z\", \"assignerOrgId\": \"e437aed5-38e0-4fa3-a98b-cb73e7acaec6\", \"datePublished\": \"2024-01-17T20:11:18.462Z\", \"assignerShortName\": \"Citrix\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

CERTFR-2024-AVI-0039

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits Citrix. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une injection de code indirecte à distance (XSS).

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Citrix StoreFront versions 2308.x antérieures à 2308.1
Citrix StoreFront versions antérieures à 2311
Citrix StoreFront versions 1912 LSTR antérieures à 1912 LTSR CU8 hotfix 3.22.8001.2
Citrix StoreFront versions 2203 LSTR antérieures à 2203 LTSR CU4 Update 1
Citrix Virtual Apps and Desktops versions antérieures à 2311
Citrix Virtual Apps and Desktops versions 1912 LTSR antérieures à 1912 LTSR CU8 hotfix 19.12.8100.4
Citrix Virtual Apps and Desktops versions 2203 LSTR antérieures à 2203 LTSR CU4
NetScaler ADC et NetScaler Gateway versions 14.1.x versions antérieures à 14.1-12.35
NetScaler ADC et NetScaler Gateway versions 13.1.x versions antérieures à 13.1-51.15
NetScaler ADC et NetScaler Gateway versions 13.0.x versions antérieures à 13.0-92.21
NetScaler ADC versions 13.1.x-FIPS versions antérieures à 13.1-37.176
NetScaler ADC versions 12.1.x-FIPS versions antérieures à 12.1-55.302
NetScaler ADC versions 12.1.x-NDcPP versions antérieures à 12.1-55.302

L’éditeur précise que les produits NetScaler ADC and NetScaler Gateway en versions 12.1 sont en fin de vie (EOL) et ne bénéficient plus de mises à jour de sécurité.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Citrix CTX584986 du 16 janvier 2024	None	vendor-advisory
Bulletin de sécurité Citrix CTX583759 du 16 janvier 2024	None	vendor-advisory
Bulletin de sécurité Citrix CTX583930 du 16 janvier 2024	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cul\u003e \u003cli\u003eCitrix StoreFront versions 2308.x ant\u00e9rieures \u00e0 2308.1\u003c/li\u003e \u003cli\u003eCitrix StoreFront versions ant\u00e9rieures \u00e0 2311\u003c/li\u003e \u003cli\u003eCitrix StoreFront versions 1912 LSTR ant\u00e9rieures \u00e0 1912 LTSR CU8 hotfix 3.22.8001.2\u003c/li\u003e \u003cli\u003eCitrix StoreFront versions 2203 LSTR ant\u00e9rieures \u00e0 2203 LTSR CU4 Update 1\u003c/li\u003e \u003cli\u003eCitrix Virtual Apps and Desktops versions ant\u00e9rieures \u00e0 2311\u003c/li\u003e \u003cli\u003eCitrix Virtual Apps and Desktops versions 1912 LTSR ant\u00e9rieures \u00e0 1912 LTSR CU8 hotfix 19.12.8100.4\u003c/li\u003e \u003cli\u003eCitrix Virtual Apps and Desktops versions 2203 LSTR ant\u00e9rieures \u00e0 2203 LTSR CU4\u003c/li\u003e \u003cli\u003eNetScaler ADC et NetScaler Gateway\u202fversions 14.1.x\u202fversions ant\u00e9rieures \u00e0\u202f14.1-12.35\u003c/li\u003e \u003cli\u003eNetScaler ADC et NetScaler Gateway\u202fversions 13.1.x\u202fversions ant\u00e9rieures \u00e0\u202f13.1-51.15\u003c/li\u003e \u003cli\u003eNetScaler ADC et NetScaler Gateway\u202fversions 13.0.x\u202fversions ant\u00e9rieures \u00e0 13.0-92.21\u003c/li\u003e \u003cli\u003eNetScaler ADC versions 13.1.x-FIPS versions ant\u00e9rieures \u00e0 13.1-37.176\u003c/li\u003e \u003cli\u003eNetScaler ADC versions 12.1.x-FIPS versions ant\u00e9rieures \u00e0 12.1-55.302\u003c/li\u003e \u003cli\u003eNetScaler ADC versions 12.1.x-NDcPP versions ant\u00e9rieures \u00e0 12.1-55.302\u003c/li\u003e \u003c/ul\u003e \u003cp\u003eL\u2019\u00e9diteur pr\u00e9cise que les produits NetScaler ADC and NetScaler Gateway en versions 12.1 sont en fin de vie (\u003cem\u003eEOL\u003c/em\u003e) et ne b\u00e9n\u00e9ficient plus de mises \u00e0 jour de s\u00e9curit\u00e9.\u003c/p\u003e ",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2023-6548",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6548"
    },
    {
      "name": "CVE-2023-5914",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-5914"
    },
    {
      "name": "CVE-2023-6184",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6184"
    },
    {
      "name": "CVE-2023-6549",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6549"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0039",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-01-16T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nCitrix. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de\ncode arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une\ninjection de code indirecte \u00e0 distance (XSS).\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Citrix",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX584986 du 16 janvier 2024",
      "url": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX583759 du 16 janvier 2024",
      "url": "https://support.citrix.com/article/CTX583759/citrix-storefront-security-bulletin-for-cve20235914"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX583930 du 16 janvier 2024",
      "url": "https://support.citrix.com/article/CTX583930/citrix-session-recording-security-bulletin-for-cve20236184"
    }
  ]
}

CERTFR-2024-AVI-0039

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Citrix StoreFront versions 2308.x antérieures à 2308.1
Citrix StoreFront versions antérieures à 2311
Citrix StoreFront versions 1912 LSTR antérieures à 1912 LTSR CU8 hotfix 3.22.8001.2
Citrix StoreFront versions 2203 LSTR antérieures à 2203 LTSR CU4 Update 1
Citrix Virtual Apps and Desktops versions antérieures à 2311
Citrix Virtual Apps and Desktops versions 1912 LTSR antérieures à 1912 LTSR CU8 hotfix 19.12.8100.4
Citrix Virtual Apps and Desktops versions 2203 LSTR antérieures à 2203 LTSR CU4
NetScaler ADC et NetScaler Gateway versions 14.1.x versions antérieures à 14.1-12.35
NetScaler ADC et NetScaler Gateway versions 13.1.x versions antérieures à 13.1-51.15
NetScaler ADC et NetScaler Gateway versions 13.0.x versions antérieures à 13.0-92.21
NetScaler ADC versions 13.1.x-FIPS versions antérieures à 13.1-37.176
NetScaler ADC versions 12.1.x-FIPS versions antérieures à 12.1-55.302
NetScaler ADC versions 12.1.x-NDcPP versions antérieures à 12.1-55.302

L’éditeur précise que les produits NetScaler ADC and NetScaler Gateway en versions 12.1 sont en fin de vie (EOL) et ne bénéficient plus de mises à jour de sécurité.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Citrix CTX584986 du 16 janvier 2024	None	vendor-advisory
Bulletin de sécurité Citrix CTX583759 du 16 janvier 2024	None	vendor-advisory
Bulletin de sécurité Citrix CTX583930 du 16 janvier 2024	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cul\u003e \u003cli\u003eCitrix StoreFront versions 2308.x ant\u00e9rieures \u00e0 2308.1\u003c/li\u003e \u003cli\u003eCitrix StoreFront versions ant\u00e9rieures \u00e0 2311\u003c/li\u003e \u003cli\u003eCitrix StoreFront versions 1912 LSTR ant\u00e9rieures \u00e0 1912 LTSR CU8 hotfix 3.22.8001.2\u003c/li\u003e \u003cli\u003eCitrix StoreFront versions 2203 LSTR ant\u00e9rieures \u00e0 2203 LTSR CU4 Update 1\u003c/li\u003e \u003cli\u003eCitrix Virtual Apps and Desktops versions ant\u00e9rieures \u00e0 2311\u003c/li\u003e \u003cli\u003eCitrix Virtual Apps and Desktops versions 1912 LTSR ant\u00e9rieures \u00e0 1912 LTSR CU8 hotfix 19.12.8100.4\u003c/li\u003e \u003cli\u003eCitrix Virtual Apps and Desktops versions 2203 LSTR ant\u00e9rieures \u00e0 2203 LTSR CU4\u003c/li\u003e \u003cli\u003eNetScaler ADC et NetScaler Gateway\u202fversions 14.1.x\u202fversions ant\u00e9rieures \u00e0\u202f14.1-12.35\u003c/li\u003e \u003cli\u003eNetScaler ADC et NetScaler Gateway\u202fversions 13.1.x\u202fversions ant\u00e9rieures \u00e0\u202f13.1-51.15\u003c/li\u003e \u003cli\u003eNetScaler ADC et NetScaler Gateway\u202fversions 13.0.x\u202fversions ant\u00e9rieures \u00e0 13.0-92.21\u003c/li\u003e \u003cli\u003eNetScaler ADC versions 13.1.x-FIPS versions ant\u00e9rieures \u00e0 13.1-37.176\u003c/li\u003e \u003cli\u003eNetScaler ADC versions 12.1.x-FIPS versions ant\u00e9rieures \u00e0 12.1-55.302\u003c/li\u003e \u003cli\u003eNetScaler ADC versions 12.1.x-NDcPP versions ant\u00e9rieures \u00e0 12.1-55.302\u003c/li\u003e \u003c/ul\u003e \u003cp\u003eL\u2019\u00e9diteur pr\u00e9cise que les produits NetScaler ADC and NetScaler Gateway en versions 12.1 sont en fin de vie (\u003cem\u003eEOL\u003c/em\u003e) et ne b\u00e9n\u00e9ficient plus de mises \u00e0 jour de s\u00e9curit\u00e9.\u003c/p\u003e ",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2023-6548",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6548"
    },
    {
      "name": "CVE-2023-5914",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-5914"
    },
    {
      "name": "CVE-2023-6184",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6184"
    },
    {
      "name": "CVE-2023-6549",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-6549"
    }
  ],
  "links": [],
  "reference": "CERTFR-2024-AVI-0039",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2024-01-16T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nCitrix. Elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de\ncode arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une\ninjection de code indirecte \u00e0 distance (XSS).\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Citrix",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX584986 du 16 janvier 2024",
      "url": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX583759 du 16 janvier 2024",
      "url": "https://support.citrix.com/article/CTX583759/citrix-storefront-security-bulletin-for-cve20235914"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Citrix CTX583930 du 16 janvier 2024",
      "url": "https://support.citrix.com/article/CTX583930/citrix-session-recording-security-bulletin-for-cve20236184"
    }
  ]
}

VAR-202401-2573

Vulnerability from variot - Updated: 2024-04-19 22:57

Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Management Interface. NetScaler ADC is an application delivery controller. NetScaler Gateway is an access gateway with an SSL VPN solution that provides single sign-on and authentication for remote end users of network assets. Both are products of Citrix

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-202401-2573",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "netscaler application delivery controller",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "13.0"
      },
      {
        "model": "netscaler gateway",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "13.1"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "13.1-51.15"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "13.0-92.21"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "14.1-12.35"
      },
      {
        "model": "netscaler gateway",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "13.0"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "13.1-37.176"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "14.1"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "12.1-55.302"
      },
      {
        "model": "netscaler gateway",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "14.1"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "12.1"
      },
      {
        "model": "netscaler gateway",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "14.1-12.35"
      },
      {
        "model": "netscaler gateway",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "13.1-51.15"
      },
      {
        "model": "netscaler gateway",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "13.0-92.21"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "citrix",
        "version": "13.1"
      },
      {
        "model": "netscaler gateway",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "citrix",
        "version": "13.0,\u003c13.0-92.21"
      },
      {
        "model": "netscaler gateway",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "citrix",
        "version": "13.1,\u003c13.1-51.15"
      },
      {
        "model": "netscaler gateway",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "citrix",
        "version": "14.1,\u003c14.1-12.35"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "citrix",
        "version": "12.1,\u003c12.1-55.302"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "citrix",
        "version": "13.1,\u003c13.1-37.176"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "citrix",
        "version": "13.0,\u003c13.0-92.21"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "citrix",
        "version": "13.1,\u003c13.1-51.15"
      },
      {
        "model": "netscaler application delivery controller",
        "scope": "gte",
        "trust": 0.6,
        "vendor": "citrix",
        "version": "14.1,\u003c14.1-12.35"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-6548"
      }
    ]
  },
  "cve": "CVE-2023-6548",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2024-17820",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 8.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 2.8,
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "author": "secure@citrix.com",
            "availabilityImpact": "LOW",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "exploitabilityScore": 2.1,
            "impactScore": 3.4,
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2023-6548",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "secure@citrix.com",
            "id": "CVE-2023-6548",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2024-17820",
            "trust": 0.6,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-6548"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-6548"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Improper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\u00a0allows an attacker with\u00a0access\u00a0to NSIP, CLIP or SNIP with management interface to perform\u00a0Authenticated (low privileged) remote code execution on Management Interface. NetScaler ADC is an application delivery controller. NetScaler Gateway is an access gateway with an SSL VPN solution that provides single sign-on and authentication for remote end users of network assets. Both are products of Citrix",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2023-6548"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      }
    ],
    "trust": 1.44
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2023-6548",
        "trust": 1.6
      },
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820",
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-6548"
      }
    ]
  },
  "id": "VAR-202401-2573",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      }
    ],
    "trust": 0.06
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      }
    ]
  },
  "last_update_date": "2024-04-19T22:57:46.120000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "Patch for Citrix NetScaler ADC and NetScaler Gateway have code injection vulnerabilities",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/541131"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-94",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2023-6548"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.0,
        "url": "https://support.citrix.com/article/ctx584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
      },
      {
        "trust": 0.6,
        "url": "https://support.citrix.com/article/ctx584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549https"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-6548"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      },
      {
        "db": "NVD",
        "id": "CVE-2023-6548"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2024-04-12T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      },
      {
        "date": "2024-01-17T20:15:50.627000",
        "db": "NVD",
        "id": "CVE-2023-6548"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2024-04-12T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      },
      {
        "date": "2024-01-25T16:45:58.287000",
        "db": "NVD",
        "id": "CVE-2023-6548"
      }
    ]
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Citrix NetScaler ADC and NetScaler Gateway have code injection vulnerabilities",
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2024-17820"
      }
    ],
    "trust": 0.6
  }
}

FKIE_CVE-2023-6548

Vulnerability from fkie_nvd - Published: 2024-01-17 20:15 - Updated: 2025-10-24 13:42

CISA KEV

Severity ?

5.5 (Medium) - CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
8.8 (High) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
secure@citrix.com	https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549	Vendor Advisory
134c704f-9b21-4f2e-91b3-4a467353bcc0	https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-6548	US Government Resource

Impacted products

Vendor	Product	Version
citrix	netscaler_application_delivery_controller	*
citrix	netscaler_application_delivery_controller	*
citrix	netscaler_application_delivery_controller	*
citrix	netscaler_application_delivery_controller	*
citrix	netscaler_application_delivery_controller	*
citrix	netscaler_application_delivery_controller	*
citrix	netscaler_gateway	*
citrix	netscaler_gateway	*
citrix	netscaler_gateway	*

JSON

To clipboard

{
  "cisaActionDue": "2024-01-24",
  "cisaExploitAdd": "2024-01-17",
  "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
  "cisaVulnerabilityName": "Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability",
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*",
              "matchCriteriaId": "E5672003-8E6B-4316-B5C9-FE436080ADD1",
              "versionEndExcluding": "12.1-55.302",
              "versionStartIncluding": "12.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:ndcpp:*:*:*",
              "matchCriteriaId": "D1A11ABD-4F45-4BA9-B30B-F1D8A612CC15",
              "versionEndExcluding": "12.1-55.302",
              "versionStartIncluding": "12.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*",
              "matchCriteriaId": "FC0A5AAC-62DD-416A-A801-A7A95D5EF73C",
              "versionEndExcluding": "13.0-92.21",
              "versionStartIncluding": "13.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*",
              "matchCriteriaId": "8C8A6B95-8338-4EE7-A6EC-7D84AEDC4AF3",
              "versionEndExcluding": "13.1-37.176",
              "versionStartIncluding": "13.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*",
              "matchCriteriaId": "3CF77D9D-FC89-493D-B97D-F9699D182F54",
              "versionEndExcluding": "13.1-51.15",
              "versionStartIncluding": "13.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*",
              "matchCriteriaId": "62CD82CF-9013-4E54-B175-19B804A351AA",
              "versionEndExcluding": "14.1-12.35",
              "versionStartIncluding": "14.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "68E1F810-ABCD-40A7-A8C1-4E8727799C7C",
              "versionEndExcluding": "13.0-92.21",
              "versionStartIncluding": "13.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E870C309-D5CD-4181-9DEB-4833DE2EAEB7",
              "versionEndExcluding": "13.1-51.15",
              "versionStartIncluding": "13.1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2836707F-A36F-479E-BFDC-CF55AEFC37EE",
              "versionEndExcluding": "14.1-12.35",
              "versionStartIncluding": "14.1",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Improper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\u00a0allows an attacker with\u00a0access\u00a0to NSIP, CLIP or SNIP with management interface to perform\u00a0Authenticated (low privileged) remote code execution on Management Interface."
    },
    {
      "lang": "es",
      "value": "El control inadecuado de la generaci\u00f3n de c\u00f3digo (\"inyecci\u00f3n de c\u00f3digo\") en NetScaler ADC y NetScaler Gateway permite a un atacante con acceso a NSIP, CLIP o SNIP con interfaz de administraci\u00f3n realizar una ejecuci\u00f3n remota de c\u00f3digo autenticado (con privilegios bajos) en Management Interface."
    }
  ],
  "id": "CVE-2023-6548",
  "lastModified": "2025-10-24T13:42:45.177",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "LOW",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
          "version": "3.1"
        },
        "exploitabilityScore": 2.1,
        "impactScore": 3.4,
        "source": "secure@citrix.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2024-01-17T20:15:50.627",
  "references": [
    {
      "source": "secure@citrix.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
    },
    {
      "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
      "tags": [
        "US Government Resource"
      ],
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-6548"
    }
  ],
  "sourceIdentifier": "secure@citrix.com",
  "vulnStatus": "Analyzed",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "secure@citrix.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

WID-SEC-W-2024-0133

Vulnerability from csaf_certbund - Published: 2024-01-16 23:00 - Updated: 2024-01-16 23:00

Summary

Citrix Systems Produkte: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Citrix Application Delivery Controller (ADC) ist eine Lösung zur Anwendungsbereitstellung und Lastverteilung. Citrix Gateway ist eine vom Kunden verwaltete Lösung, die vor Ort oder in jeder öffentlichen Cloud, wie z.B. AWS, Azure oder Google Cloud Platform, eingesetzt werden kann. Citrix Gateway bietet Anwendern sicheren Zugriff und Single Sign-On für alle virtuellen, SaaS- und Web-Anwendungen.

Angriff

Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Citrix Systems ADC und Citrix Systems Citrix Gateway ausnutzen, um beliebigen Programmcode auszuführen oder einen Denial of Service zu verursachen.

Betroffene Betriebssysteme

- Sonstiges

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Citrix Application Delivery Controller (ADC) ist eine L\u00f6sung zur Anwendungsbereitstellung und Lastverteilung.\r\nCitrix Gateway ist eine vom Kunden verwaltete L\u00f6sung, die vor Ort oder in jeder \u00f6ffentlichen Cloud, wie z.B. AWS, Azure oder Google Cloud Platform, eingesetzt werden kann.  Citrix Gateway bietet Anwendern sicheren Zugriff und Single Sign-On f\u00fcr alle virtuellen, SaaS- und Web-Anwendungen.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, authentisierter Angreifer kann mehrere Schwachstellen in Citrix Systems ADC und Citrix Systems Citrix Gateway ausnutzen, um beliebigen Programmcode auszuf\u00fchren oder einen Denial of Service zu verursachen.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2024-0133 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0133.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2024-0133 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0133"
      },
      {
        "category": "external",
        "summary": "Citrix Security Bulletin vom 2024-01-16",
        "url": "https://support.citrix.com/article/CTX584986"
      }
    ],
    "source_lang": "en-US",
    "title": "Citrix Systems Produkte: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2024-01-16T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:03:53.564+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2024-0133",
      "initial_release_date": "2024-01-16T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2024-01-16T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Citrix Systems ADC \u003c 14.1-12.35",
                "product": {
                  "name": "Citrix Systems ADC \u003c 14.1-12.35",
                  "product_id": "T032190",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:citrix:application_delivery_controller_firmware:14.1-12.35"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Citrix Systems ADC \u003c 13.1-51.15",
                "product": {
                  "name": "Citrix Systems ADC \u003c 13.1-51.15",
                  "product_id": "T032192",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:citrix:application_delivery_controller_firmware:13.1-51.15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Citrix Systems ADC \u003c 13.0-92.21",
                "product": {
                  "name": "Citrix Systems ADC \u003c 13.0-92.21",
                  "product_id": "T032194",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:citrix:application_delivery_controller_firmware:13.0-92.21"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Citrix Systems ADC FIPS \u003c 13.1-37.176",
                "product": {
                  "name": "Citrix Systems ADC FIPS \u003c 13.1-37.176",
                  "product_id": "T032197",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:citrix:application_delivery_controller_firmware:fips__13.1-37.176"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Citrix Systems ADC FIPS \u003c 12.1-55.302",
                "product": {
                  "name": "Citrix Systems ADC FIPS \u003c 12.1-55.302",
                  "product_id": "T032198",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:citrix:application_delivery_controller_firmware:fips__12.1-55.302"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Citrix Systems ADC NDcPP \u003c 12.1-55.302",
                "product": {
                  "name": "Citrix Systems ADC NDcPP \u003c 12.1-55.302",
                  "product_id": "T032199",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:citrix:application_delivery_controller_firmware:ndcpp__12.1-55.302"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "ADC"
          },
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Citrix Systems Citrix Gateway \u003c 14.1-12.35",
                "product": {
                  "name": "Citrix Systems Citrix Gateway \u003c 14.1-12.35",
                  "product_id": "T032191",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:citrix:gateway:14.1-12.35"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Citrix Systems Citrix Gateway \u003c 13.1-51.15",
                "product": {
                  "name": "Citrix Systems Citrix Gateway \u003c 13.1-51.15",
                  "product_id": "T032193",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:citrix:gateway:13.1-51.15"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Citrix Systems Citrix Gateway \u003c 13.0-92.21",
                "product": {
                  "name": "Citrix Systems Citrix Gateway \u003c 13.0-92.21",
                  "product_id": "T032195",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:citrix:gateway:13.0-92.21"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Citrix Gateway"
          }
        ],
        "category": "vendor",
        "name": "Citrix Systems"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-6548",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Citrix Systems ADC und Citrix Systems Citrix Gateway. Diese besteht in der Verwaltungsschnittstelle, ist jedoch nicht genauer beschrieben. Ein authentisierter Angreifer kann die Schwachstelle ausnutzen, um beliebigen Code zur Ausf\u00fchrung zu bringen."
        }
      ],
      "release_date": "2024-01-16T23:00:00.000+00:00",
      "title": "CVE-2023-6548"
    },
    {
      "cve": "CVE-2023-6549",
      "notes": [
        {
          "category": "description",
          "text": "Es existiert eine Schwachstelle in Citrix Systems ADC und Citrix Systems Citrix Gateway. Diese, nicht n\u00e4her beschriebene Schwachstelle kann nur dann ausgenutzt werden, wenn die Appliance als Gateway konfiguriert ist. Ein entfernter, anonymer Angreifer kann das ausnutzen, um einen Denial of Service zu verursachen."
        }
      ],
      "release_date": "2024-01-16T23:00:00.000+00:00",
      "title": "CVE-2023-6549"
    }
  ]
}

GHSA-W4RW-V3MM-HJ8H

Vulnerability from github – Published: 2024-01-17 21:30 – Updated: 2025-10-22 00:32

Details

[PROBLEMTYPE] in [COMPONENT] in [VENDOR] [PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT] via [VECTOR]

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-6548"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-94"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2024-01-17T20:15:50Z",
    "severity": "MODERATE"
  },
  "details": "[PROBLEMTYPE] in [COMPONENT] in [VENDOR] [PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT] via [VECTOR]",
  "id": "GHSA-w4rw-v3mm-hj8h",
  "modified": "2025-10-22T00:32:58Z",
  "published": "2024-01-17T21:30:21Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-6548"
    },
    {
      "type": "WEB",
      "url": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
    },
    {
      "type": "WEB",
      "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-6548"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
      "type": "CVSS_V3"
    }
  ]
}

CNVD-2024-17820

Vulnerability from cnvd - Published: 2024-04-12

Title

Citrix NetScaler ADC和NetScaler Gateway存在代码注入漏洞

Description

NetScaler ADC是一种应用程序交付控制器。NetScaler Gateway是一款具有SSL VPN解决方案的访问网关，可为网络资产的远程最终用户提供单点登录和身份验证。两者均为Citrix旗下的产品。 Citrix NetScaler ADC和NetScaler Gateway存在代码注入漏洞，漏洞源于NetScaler ADC and NetScaler Gateway中的代码生成控制不当。具有管理界面的NSIP、CLIP或SNIP访问权限的攻击者，可利用漏洞在管理界面上执行经过身份验证（低权限）的远程代码执行。

Severity

高

Patch Name

Citrix NetScaler ADC和NetScaler Gateway存在代码注入漏洞的补丁

Patch Description

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://www.citrix.com/downloads/

Reference

https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549https://cxsecurity.com/cveshow/CVE-2023-6548/https://nvd.nist.gov/vuln/detail/CVE-2023-6548

Impacted products

Name
['Citrix Systems, Inc. NetScaler Gateway >=13.0，<13.0-92.21', 'Citrix Systems, Inc. NetScaler Gateway >=13.1，<13.1-51.15', 'Citrix Systems, Inc. NetScaler Gateway >=14.1，<14.1-12.35', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=12.1，<12.1-55.302', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=13.1，<13.1-37.176', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=13.0，<13.0-92.21', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=13.1，<13.1-51.15', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=14.1，<14.1-12.35']

Name

['Citrix Systems, Inc. NetScaler Gateway >=13.0，<13.0-92.21', 'Citrix Systems, Inc. NetScaler Gateway >=13.1，<13.1-51.15', 'Citrix Systems, Inc. NetScaler Gateway >=14.1，<14.1-12.35', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=12.1，<12.1-55.302', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=13.1，<13.1-37.176', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=13.0，<13.0-92.21', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=13.1，<13.1-51.15', 'Citrix Systems, Inc. NetScaler Application Delivery Controller >=14.1，<14.1-12.35']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2023-6548",
      "cveUrl": "https://nvd.nist.gov/vuln/detail/CVE-2023-6548"
    }
  },
  "description": "NetScaler ADC\u662f\u4e00\u79cd\u5e94\u7528\u7a0b\u5e8f\u4ea4\u4ed8\u63a7\u5236\u5668\u3002NetScaler Gateway\u662f\u4e00\u6b3e\u5177\u6709SSL VPN\u89e3\u51b3\u65b9\u6848\u7684\u8bbf\u95ee\u7f51\u5173\uff0c\u53ef\u4e3a\u7f51\u7edc\u8d44\u4ea7\u7684\u8fdc\u7a0b\u6700\u7ec8\u7528\u6237\u63d0\u4f9b\u5355\u70b9\u767b\u5f55\u548c\u8eab\u4efd\u9a8c\u8bc1\u3002\u4e24\u8005\u5747\u4e3aCitrix\u65d7\u4e0b\u7684\u4ea7\u54c1\u3002\n\nCitrix NetScaler ADC\u548cNetScaler Gateway\u5b58\u5728\u4ee3\u7801\u6ce8\u5165\u6f0f\u6d1e\uff0c\u6f0f\u6d1e\u6e90\u4e8eNetScaler ADC and NetScaler Gateway\u4e2d\u7684\u4ee3\u7801\u751f\u6210\u63a7\u5236\u4e0d\u5f53\u3002\u5177\u6709\u7ba1\u7406\u754c\u9762\u7684NSIP\u3001CLIP\u6216SNIP\u8bbf\u95ee\u6743\u9650\u7684\u653b\u51fb\u8005\uff0c\u53ef\u5229\u7528\u6f0f\u6d1e\u5728\u7ba1\u7406\u754c\u9762\u4e0a\u6267\u884c\u7ecf\u8fc7\u8eab\u4efd\u9a8c\u8bc1\uff08\u4f4e\u6743\u9650\uff09\u7684\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://www.citrix.com/downloads/",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2024-17820",
  "openTime": "2024-04-12",
  "patchDescription": "NetScaler ADC\u662f\u4e00\u79cd\u5e94\u7528\u7a0b\u5e8f\u4ea4\u4ed8\u63a7\u5236\u5668\u3002NetScaler Gateway\u662f\u4e00\u6b3e\u5177\u6709SSL VPN\u89e3\u51b3\u65b9\u6848\u7684\u8bbf\u95ee\u7f51\u5173\uff0c\u53ef\u4e3a\u7f51\u7edc\u8d44\u4ea7\u7684\u8fdc\u7a0b\u6700\u7ec8\u7528\u6237\u63d0\u4f9b\u5355\u70b9\u767b\u5f55\u548c\u8eab\u4efd\u9a8c\u8bc1\u3002\u4e24\u8005\u5747\u4e3aCitrix\u65d7\u4e0b\u7684\u4ea7\u54c1\u3002\r\n\r\nCitrix NetScaler ADC\u548cNetScaler Gateway\u5b58\u5728\u4ee3\u7801\u6ce8\u5165\u6f0f\u6d1e\uff0c\u6f0f\u6d1e\u6e90\u4e8eNetScaler ADC and NetScaler Gateway\u4e2d\u7684\u4ee3\u7801\u751f\u6210\u63a7\u5236\u4e0d\u5f53\u3002\u5177\u6709\u7ba1\u7406\u754c\u9762\u7684NSIP\u3001CLIP\u6216SNIP\u8bbf\u95ee\u6743\u9650\u7684\u653b\u51fb\u8005\uff0c\u53ef\u5229\u7528\u6f0f\u6d1e\u5728\u7ba1\u7406\u754c\u9762\u4e0a\u6267\u884c\u7ecf\u8fc7\u8eab\u4efd\u9a8c\u8bc1\uff08\u4f4e\u6743\u9650\uff09\u7684\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Citrix NetScaler ADC\u548cNetScaler Gateway\u5b58\u5728\u4ee3\u7801\u6ce8\u5165\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Citrix Systems, Inc. NetScaler Gateway \u003e=13.0\uff0c\u003c13.0-92.21",
      "Citrix Systems, Inc. NetScaler Gateway \u003e=13.1\uff0c\u003c13.1-51.15",
      "Citrix Systems, Inc. NetScaler Gateway \u003e=14.1\uff0c\u003c14.1-12.35",
      "Citrix Systems, Inc. NetScaler Application Delivery Controller \u003e=12.1\uff0c\u003c12.1-55.302",
      "Citrix Systems, Inc. NetScaler Application Delivery Controller \u003e=13.1\uff0c\u003c13.1-37.176",
      "Citrix Systems, Inc. NetScaler Application Delivery Controller \u003e=13.0\uff0c\u003c13.0-92.21",
      "Citrix Systems, Inc. NetScaler Application Delivery Controller \u003e=13.1\uff0c\u003c13.1-51.15",
      "Citrix Systems, Inc. NetScaler Application Delivery Controller \u003e=14.1\uff0c\u003c14.1-12.35"
    ]
  },
  "referenceLink": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549https://cxsecurity.com/cveshow/CVE-2023-6548/https://nvd.nist.gov/vuln/detail/CVE-2023-6548",
  "serverity": "\u9ad8",
  "submitTime": "2024-02-22",
  "title": "Citrix NetScaler ADC\u548cNetScaler Gateway\u5b58\u5728\u4ee3\u7801\u6ce8\u5165\u6f0f\u6d1e"
}

GSD-2023-6548

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2023-6548

Aliases

CVE-2023-6548

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-6548",
    "id": "GSD-2023-6548"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-6548"
      ],
      "details": "Improper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\u00a0allows an attacker with\u00a0access\u00a0to NSIP, CLIP or SNIP with management interface to perform\u00a0Authenticated (low privileged) remote code execution on Management Interface.",
      "id": "GSD-2023-6548",
      "modified": "2023-12-13T01:20:32.823328Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secure@citrix.com",
        "ID": "CVE-2023-6548",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "NetScaler ADC\u202f",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "14.1",
                          "version_value": "12.35"
                        },
                        {
                          "version_affected": "\u003c",
                          "version_name": "13.1",
                          "version_value": "51.15"
                        },
                        {
                          "version_affected": "\u003c",
                          "version_name": "13.0 ",
                          "version_value": "92.21"
                        },
                        {
                          "version_affected": "\u003c",
                          "version_name": " 13.1-FIPS",
                          "version_value": "37.176"
                        },
                        {
                          "version_affected": "\u003c",
                          "version_name": "12.1-FIPS",
                          "version_value": "55.302"
                        },
                        {
                          "version_affected": "\u003c",
                          "version_name": "12.1-NDcPP",
                          "version_value": "55.302"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "NetScaler Gateway",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "\u003c",
                          "version_name": "14.1",
                          "version_value": "12.35"
                        },
                        {
                          "version_affected": "\u003c",
                          "version_name": "13.1",
                          "version_value": "51.15"
                        },
                        {
                          "version_affected": "\u003c",
                          "version_name": "13.0",
                          "version_value": "92.21"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Cloud Software Group"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Improper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\u00a0allows an attacker with\u00a0access\u00a0to NSIP, CLIP or SNIP with management interface to perform\u00a0Authenticated (low privileged) remote code execution on Management Interface."
          }
        ]
      },
      "generator": {
        "engine": "Vulnogram 0.1.0-dev"
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "LOW",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-94",
                "lang": "eng",
                "value": "CWE-94 Improper Control of Generation of Code (\u0027Code Injection\u0027)"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549",
            "refsource": "MISC",
            "url": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
          }
        ]
      },
      "source": {
        "discovery": "UNKNOWN"
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "cisaActionDue": "2024-01-24",
        "cisaExploitAdd": "2024-01-17",
        "cisaRequiredAction": "Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.",
        "cisaVulnerabilityName": "Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability",
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*",
                    "matchCriteriaId": "E5672003-8E6B-4316-B5C9-FE436080ADD1",
                    "versionEndExcluding": "12.1-55.302",
                    "versionStartIncluding": "12.1",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:ndcpp:*:*:*",
                    "matchCriteriaId": "D1A11ABD-4F45-4BA9-B30B-F1D8A612CC15",
                    "versionEndExcluding": "12.1-55.302",
                    "versionStartIncluding": "12.1",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*",
                    "matchCriteriaId": "FC0A5AAC-62DD-416A-A801-A7A95D5EF73C",
                    "versionEndExcluding": "13.0-92.21",
                    "versionStartIncluding": "13.0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:fips:*:*:*",
                    "matchCriteriaId": "8C8A6B95-8338-4EE7-A6EC-7D84AEDC4AF3",
                    "versionEndExcluding": "13.1-37.176",
                    "versionStartIncluding": "13.1",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*",
                    "matchCriteriaId": "3CF77D9D-FC89-493D-B97D-F9699D182F54",
                    "versionEndExcluding": "13.1-51.15",
                    "versionStartIncluding": "13.1",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:citrix:netscaler_application_delivery_controller:*:*:*:*:-:*:*:*",
                    "matchCriteriaId": "62CD82CF-9013-4E54-B175-19B804A351AA",
                    "versionEndExcluding": "14.1-12.35",
                    "versionStartIncluding": "14.1",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "68E1F810-ABCD-40A7-A8C1-4E8727799C7C",
                    "versionEndExcluding": "13.0-92.21",
                    "versionStartIncluding": "13.0",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "E870C309-D5CD-4181-9DEB-4833DE2EAEB7",
                    "versionEndExcluding": "13.1-51.15",
                    "versionStartIncluding": "13.1",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*",
                    "matchCriteriaId": "2836707F-A36F-479E-BFDC-CF55AEFC37EE",
                    "versionEndExcluding": "14.1-12.35",
                    "versionStartIncluding": "14.1",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Improper Control of Generation of Code (\u0027Code Injection\u0027) in NetScaler ADC and NetScaler Gateway\u00a0allows an attacker with\u00a0access\u00a0to NSIP, CLIP or SNIP with management interface to perform\u00a0Authenticated (low privileged) remote code execution on Management Interface."
          },
          {
            "lang": "es",
            "value": "El control inadecuado de la generaci\u00f3n de c\u00f3digo (\"inyecci\u00f3n de c\u00f3digo\") en NetScaler ADC y NetScaler Gateway permite a un atacante con acceso a NSIP, CLIP o SNIP con interfaz de administraci\u00f3n realizar una ejecuci\u00f3n remota de c\u00f3digo autenticado (con privilegios bajos) en Management Interface."
          }
        ],
        "id": "CVE-2023-6548",
        "lastModified": "2024-01-25T16:45:58.287",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "NETWORK",
                "availabilityImpact": "HIGH",
                "baseScore": 8.8,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 2.8,
              "impactScore": 5.9,
              "source": "nvd@nist.gov",
              "type": "Primary"
            },
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "ADJACENT_NETWORK",
                "availabilityImpact": "LOW",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "LOW",
                "integrityImpact": "LOW",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L",
                "version": "3.1"
              },
              "exploitabilityScore": 2.1,
              "impactScore": 3.4,
              "source": "secure@citrix.com",
              "type": "Secondary"
            }
          ]
        },
        "published": "2024-01-17T20:15:50.627",
        "references": [
          {
            "source": "secure@citrix.com",
            "tags": [
              "Vendor Advisory"
            ],
            "url": "https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549"
          }
        ],
        "sourceIdentifier": "secure@citrix.com",
        "vulnStatus": "Analyzed",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-94"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          },
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-94"
              }
            ],
            "source": "secure@citrix.com",
            "type": "Secondary"
          }
        ]
      }
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-6548 (GCVE-0-2023-6548)

CISA KEV

Known Exploited Vulnerability - GCVE BCP-07 Compliant

Timestamps

Scope

Evidence

Vendor Report Successful Exploitation Confidence: 80% Source: cisa-kev

Details

References

Solution

Solution

Tags

Sightings

Nomenclature