CVE-2022-27518 - OpenCVE

Unauthenticated remote arbitrary code execution

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Citrix	Application Delivery Controller Application Delivery Controller Firmware Gateway Gateway Firmware

Configuration 1 [-]

AND

OR	cpe:2.3:o:citrix:application_delivery_controller_firmware:::::fips:::*
	cpe:2.3:o:citrix:application_delivery_controller_firmware:::::ndcpp:::*
	cpe:2.3:o:citrix:application_delivery_controller_firmware::::::::
	cpe:2.3:o:citrix:application_delivery_controller_firmware::::::::

cpe:2.3:h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

OR	cpe:2.3:o:citrix:gateway_firmware::::::::
	cpe:2.3:o:citrix:gateway_firmware::::::::

cpe:2.3:h:citrix:gateway:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://support.citrix.com/article/CTX474995

History

No history.

MITRE

Status: PUBLISHED

Assigner: Citrix

Published: 2022-12-13T00:00:00

Updated: 2024-08-03T05:32:59.829Z

Reserved: 2022-03-21T00:00:00

Link: CVE-2022-27518

Vulnrichment

No data.

NVD

Status : Analyzed

Published: 2022-12-13T17:15:14.350

Modified: 2024-06-28T13:48:51.990

Link: CVE-2022-27518

Redhat

No data.

{"containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Citrix Gateway, Citrix ADC ", "vendor": "Citrix", "versions": [{"status": "affected", "version": "12.1"}, {"status": "affected", "version": "13.0"}, {"status": "affected", "version": "12.1 FIPs, NDcPP"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<span style=\"background-color: rgb(255, 255, 255);\">Unauthenticated remote arbitrary code execution</span><br>"}], "value": "Unauthenticated remote arbitrary code execution\n"}], "impacts": [{"capecId": "CAPEC-253", "descriptions": [{"lang": "en", "value": "CAPEC-253 Remote Code Inclusion"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-664", "description": "CWE-664: Improper Control of a Resource Through its Lifetime ", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "e437aed5-38e0-4fa3-a98b-cb73e7acaec6", "shortName": "Citrix", "dateUpdated": "2023-10-18T17:34:17.110Z"}, "references": [{"name": "https://support.citrix.com/article/CTX474995", "url": "https://support.citrix.com/article/CTX474995"}], "source": {"discovery": "UNKNOWN"}, "title": "Unauthenticated remote arbitrary code execution", "x_generator": {"engine": "Vulnogram 0.1.0-dev"}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T05:32:59.829Z"}, "title": "CVE Program Container", "references": [{"name": "https://support.citrix.com/article/CTX474995", "url": "https://support.citrix.com/article/CTX474995", "tags": ["x_transferred"]}]}]}, "cveMetadata": {"assignerOrgId": "e437aed5-38e0-4fa3-a98b-cb73e7acaec6", "cveId": "CVE-2022-27518", "serial": 1, "state": "PUBLISHED", "dateUpdated": "2024-08-03T05:32:59.829Z", "dateReserved": "2022-03-21T00:00:00", "datePublished": "2022-12-13T00:00:00", "assignerShortName": "Citrix"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"cisaActionDue": "2023-01-03", "cisaExploitAdd": "2022-12-13", "cisaRequiredAction": "Apply updates per vendor instructions.", "cisaVulnerabilityName": "Citrix Application Delivery Controller (ADC) and Gateway Authentication Bypass Vulnerability", "configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:fips:*:*:*", "matchCriteriaId": "59CA6CB8-1B2C-4265-82ED-802D4D387EAD", "versionEndExcluding": "12.1-55.291", "versionStartIncluding": "12.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:ndcpp:*:*:*", "matchCriteriaId": "0FB77A6C-768D-4084-924B-5F0607FE6D83", "versionEndExcluding": "12.1-55.291", "versionStartIncluding": "12.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1D0B760B-B3B6-442A-8C54-AA8A6D63660B", "versionEndExcluding": "12.1-65.25", "versionStartIncluding": "12.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7EBF9BE3-E779-4621-8409-1A61DA07F6FF", "versionEndExcluding": "13.0-58.32", "versionStartIncluding": "13.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*", "matchCriteriaId": "80E69E10-6F40-4FE4-9D84-F6C25EAB79D8", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:citrix:gateway_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FB4301CB-EBF3-41D7-8A17-7E0B9E452780", "versionEndExcluding": "12.1-65.25", "versionStartIncluding": "12.1", "vulnerable": true}, {"criteria": "cpe:2.3:o:citrix:gateway_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FD9F0308-2BD3-403F-B90E-EEB1B6845627", "versionEndExcluding": "13.0-58.32", "versionStartIncluding": "13.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:citrix:gateway:-:*:*:*:*:*:*:*", "matchCriteriaId": "3EF98B43-71DB-4230-B7AC-76EC2B1F0533", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unauthenticated remote arbitrary code execution\n"}, {"lang": "es", "value": "Ejecuci\u00f3n remota de c\u00f3digo arbitrario no autenticado"}], "id": "CVE-2022-27518", "lastModified": "2024-06-28T13:48:51.990", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 9.8, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 5.9, "source": "secure@citrix.com", "type": "Secondary"}]}, "published": "2022-12-13T17:15:14.350", "references": [{"source": "secure@citrix.com", "tags": ["Vendor Advisory"], "url": "https://support.citrix.com/article/CTX474995"}], "sourceIdentifier": "secure@citrix.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}, {"description": [{"lang": "en", "value": "CWE-664"}], "source": "secure@citrix.com", "type": "Secondary"}]}