Main
Vulnerability Database
Exploits
ID:3107 - Exploit for Improper Authorization in Citrix products - CVE-2020-8193
ID:3107 - Exploit for Improper Authorization in Citrix products - CVE-2020-8193
Published: July 15, 2020
Vulnerability identifier: #VU29585
Vulnerability risk: Medium
CVE-ID: CVE-2020-8193
CWE-ID: CWE-285
Exploitation vector: Remote access
Vulnerable software:
Citrix Netscaler ADC
Citrix NetScaler Gateway
SD-WAN 5100 WANOP
SD-WAN 5000 WANOP
SD-WAN 4100 WANOP
SD-WAN 4000 WANOP
Citrix Netscaler ADC
Citrix NetScaler Gateway
SD-WAN 5100 WANOP
SD-WAN 5000 WANOP
SD-WAN 4100 WANOP
SD-WAN 4000 WANOP
Link to public exploit:
Vulnerability description
The vulnerability allows a remote attacker to bypass authorization process.
The vulnerability exists due to improper authorization. A remote authenticated attacker with access to the NSIP can bypass implemented security restrictions.
Remediation
Install updates from vendor's website.