CyberSec.Space Logo
返回 CVE 浏览器

CVE-2021-22956

HIGH
7.5
CVSS Severity Score
EPSS Score0.1880%
EPSS Percentile36.17th
Published2021年12月7日
Last Modified2024年11月21日

Vulnerability Description

An uncontrolled resource consumption vulnerability exists in Citrix ADC <13.0-83.27, <12.1-63.22 and 11.1-65.23 that could allow an attacker with access to NSIP or SNIP with management interface access to cause a temporary disruption of the Management GUI, Nitro API, and RPC communication.

Affected Platforms (CPE)

💻
Citrix

Application Delivery Controller Firmware

< 11.1-65.23
💻
Citrix

Application Delivery Controller Firmware

>= 12.1 and < 12.1-63.22
💻
Citrix

Application Delivery Controller Firmware

>= 13.0 and < 13.0-83.27
📦
Citrix

Gateway

< 11.1-65.23
📦
Citrix

Gateway

>= 12.1 and < 12.1-63.22
📦
Citrix

Gateway

>= 13.0 and < 13.0-65.23
📦
Citrix

Sd Wan

< 10.2.9c
📦
Citrix

Sd Wan

>= 11.4.0 and < 11.4.2

References & Advisories

🔗 https://support.citrix.com/article/CTX330728
🔗 https://support.citrix.com/article/CTX330728

相关漏洞威胁

CVE-2015-36425.9

The TLS and DTLS processing functionality in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway devices ...

CVE-2021-3467910.0

Thycotic Password Reset Server before 5.3.0 allows credential disclosure.

CVE-2021-021110.0

An improper check for unusual or exceptional conditions in Juniper Networks Junos OS and Junos OS Evolved Routing Protocol Daemon ...

CVE-2021-2124310.0

OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, a Kubernetes REST endpoint exposes two methods that deser...