CVE-2020-8193 — Actively Exploited: Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance (Citrix)
Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an authorization bypass vulnerability that may allow unauthenticated access to certain URL endpoints. The attacker must have access to the NetScaler IP (NSIP) in order to perform exploitation.
| CVE ID | CVE-2020-8193 |
|---|---|
| Vendor | Citrix |
| Product | Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance |
| Vulnerability name | Citrix ADC, Gateway, and SD-WAN WANOP Appliance Authorization Bypass Vulnerability |
| Date added | 2021-11-03 |
| Remediation due | 2022-05-03 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an authorization bypass vulnerability that may allow unauthenticated access to certain URL endpoints. The attacker must have access to the NetScaler IP (NSIP) in order to perform exploitation. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →