Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way of a network-based denial-of-service from within the same Layer 2 network segment. Note that the attacker must be in the same Layer 2 network segment as the vulnerable appliance.
Project Subscriptions
| Vendors | Products |
|---|---|
|
Citrix
Subscribe
|
Application Delivery Controller
Subscribe
Application Delivery Controller Firmware
Subscribe
Gateway
Subscribe
Mpx\/sdx 14030 Fips
Subscribe
Mpx\/sdx 14060 Fips
Subscribe
Mpx\/sdx 14080 Fips
Subscribe
Mpx 15030-50g Fips
Subscribe
Mpx 15040-50g Fips
Subscribe
Mpx 15060-50g Fips
Subscribe
Mpx 15080-50g Fips
Subscribe
Mpx 15100-50g Fips
Subscribe
Mpx 15120-50g Fips
Subscribe
Mpx 8905 Fips
Subscribe
Mpx 8910 Fips
Subscribe
Mpx 8920 Fips
Subscribe
Netscaler Gateway
Subscribe
Sd-wan Wanop
Subscribe
|
Advisories
| Source | ID | Title |
|---|---|---|
EUVD |
EUVD-2020-29166 | Citrix ADC and Citrix/NetScaler Gateway 13.0 before 13.0-76.29, 12.1-61.18, 11.1-65.20, Citrix ADC 12.1-FIPS before 12.1-55.238, and Citrix SD-WAN WANOP Edition before 11.4.0, 11.3.2, 11.3.1a, 11.2.3a, 11.1.2c, 10.2.9a suffers from uncontrolled resource consumption by way of a network-based denial-of-service from within the same Layer 2 network segment. Note that the attacker must be in the same Layer 2 network segment as the vulnerable appliance. |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
| Link | Providers |
|---|---|
| https://support.citrix.com/article/CTX297155 |
|
History
No history.
Projects
Sign in to view the affected projects.
Status: PUBLISHED
Assigner: hackerone
Published:
Updated: 2024-08-04T09:56:28.408Z
Reserved: 2020-01-28T00:00:00
Link: CVE-2020-8299
No data.
Status : Modified
Published: 2021-06-16T14:15:08.107
Modified: 2024-11-21T05:38:41.210
Link: CVE-2020-8299
No data.
OpenCVE Enrichment
No data.
Weaknesses
EUVD