← ExploitWatch
HomeExploited Vulnerabilities

CVE-2022-27518 — Actively Exploited: Application Delivery Controller (ADC) and Gateway (Citrix)

Citrix Application Delivery Controller (ADC) and Gateway, when configured with SAML SP or IdP configuration, contain an authentication bypass vulnerability that allows an attacker to execute code as administrator.

CVE IDCVE-2022-27518
VendorCitrix
ProductApplication Delivery Controller (ADC) and Gateway
Vulnerability nameCitrix Application Delivery Controller (ADC) and Gateway Authentication Bypass Vulnerability
Date added2022-12-13
Remediation due2023-01-03
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionCitrix Application Delivery Controller (ADC) and Gateway, when configured with SAML SP or IdP configuration, contain an authentication bypass vulnerability that allows an attacker to execute code as administrator.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →