CVE-2022-27518
Citrix Application Delivery Controller (ADC) and Gateway Authentication Bypass Vulnerability
CVSS
—
Sin CVSS
EPSS
6.9%
p93
KEV
SÍ
13 dic 2022
Exploit Today
78
0-100
Publicado: — · Última mod.: —
Producto
Citrix / Application Delivery Controller (ADC) and Gateway
Vulnerabilidad
Citrix Application Delivery Controller (ADC) and Gateway Authentication Bypass Vulnerability
Añadido a KEV
13 dic 2022
Remediar antes de
3 ene 2023
Uso conocido en ransomware
No
Descripción resumida
Citrix Application Delivery Controller (ADC) and Gateway, when configured with SAML SP or IdP configuration, contain an authentication bypass vulnerability that allows an attacker to execute code as administrator.
Acción requerida
Apply updates per vendor instructions.
Notas
https://www.citrix.com/blogs/2022/12/13/critical-security-update-now-available-for-citrix-adc-citrix-gateway/; https://nvd.nist.gov/vuln/detail/CVE-2022-27518
Sin CVEs relacionados por CWE o producto.