Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) remote code execution on Management Interface.
Metrics
Affected Vendors & Products
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Wed, 30 Jul 2025 02:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:citrix:netscaler_application_delivery_controller:12.1:*:*:*:fips:*:*:* cpe:2.3:a:citrix:netscaler_application_delivery_controller:12.1:*:*:*:ndcpp:*:*:* cpe:2.3:a:citrix:netscaler_application_delivery_controller:13.0:*:*:*:-:*:*:* cpe:2.3:a:citrix:netscaler_application_delivery_controller:13.1:*:*:*:-:*:*:* cpe:2.3:a:citrix:netscaler_application_delivery_controller:13.1:*:*:*:fips:*:*:* cpe:2.3:a:citrix:netscaler_application_delivery_controller:14.1:*:*:*:-:*:*:* cpe:2.3:a:citrix:netscaler_gateway:13.0:*:*:*:*:*:*:* cpe:2.3:a:citrix:netscaler_gateway:13.1:*:*:*:*:*:*:* cpe:2.3:a:citrix:netscaler_gateway:14.1:*:*:*:*:*:*:* |
|
Metrics |
ssvc
|
Wed, 16 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|

Status: PUBLISHED
Assigner: Citrix
Published:
Updated: 2025-07-30T01:37:08.884Z
Reserved: 2023-12-06T11:01:54.643Z
Link: CVE-2023-6548

Updated: 2024-08-02T08:35:14.029Z

Status : Analyzed
Published: 2024-01-17T20:15:50.627
Modified: 2025-01-27T21:48:11.423
Link: CVE-2023-6548

No data.

No data.