| Vulnerability Name: | CVE-2015-5538 (CCN-106435) | ||||||||
| Assigned: | 2015-09-14 | ||||||||
| Published: | 2015-09-14 | ||||||||
| Updated: | 2016-12-22 | ||||||||
| Summary: | Multiple unspecified vulnerabilities in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway before 10.1 Build 132.8, 10.5 before Build 57.7, and 10.5e before Build 56.1505.e allow remote attackers to gain privileges via unknown vectors, related to the (1) Command Line Interface (CLI) and the (2) Web User Interface (UI). | ||||||||
| CVSS v3 Severity: | 8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H) 7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
| ||||||||
| CVSS v2 Severity: | 10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
| ||||||||
| Vulnerability Type: | CWE-noinfo | ||||||||
| Vulnerability Consequences: | Gain Privileges | ||||||||
| References: | Source: MITRE Type: CNA CVE-2015-5538 Source: CCN Type: CTX201334 Citrix NetScaler Application Delivery Controller and NetScaler Gateway Multiple Security Updates Source: CONFIRM Type: Vendor Advisory http://support.citrix.com/article/CTX201334 Source: SECTRACK Type: UNKNOWN 1033618 Source: XF Type: UNKNOWN citrix-netscaler-cve20155538-priv-esc(106435) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||