Vulnerability Name:

CVE-2017-17382 (CCN-136239)

Assigned:2017-12-12
Published:2017-12-12
Updated:2019-10-03
Summary:Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 10.5 before build 67.13, 11.0 before build 71.22, 11.1 before build 56.19, and 12.0 before build 53.22 might allow remote attackers to decrypt TLS ciphertext data by leveraging a Bleichenbacher RSA padding oracle, aka a ROBOT attack.
CVSS v3 Severity:5.9 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): None
Availibility (A): None
5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-327
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2017-17382

Source: CCN
Type: IBM Security Bulletin 2015539 (PredictiveInsight)
Multiple Security Vulnerabilities Impact IBM Predictive Insights

Source: CCN
Type: US-CERT VU#144389
TLS implementations may disclose side channel information via discrepencies between valid and invalid PKCS#1 padding

Source: BID
Type: Third Party Advisory, VDB Entry
102173

Source: CCN
Type: BID-102173
Multiple Citrix Products CVE-2017-17382 Information Disclosure Vulnerability

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1039985

Source: XF
Type: UNKNOWN
citrix-cve201717382-info-disc(136239)

Source: CCN
Type: Robot Attack Web site
The ROBOT Attack

Source: MISC
Type: Third Party Advisory
https://robotattack.org/

Source: CCN
Type: CTX230238
TLS Padding Oracle Vulnerability in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway

Source: CONFIRM
Type: Vendor Advisory
https://support.citrix.com/article/ctx230238

Source: CERT-VN
Type: Third Party Advisory, US Government Resource
VU#144389

Vulnerable Configuration:Configuration 1:
  • cpe:/o:citrix:application_delivery_controller_firmware:10.5:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:application_delivery_controller_firmware:11.0:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:application_delivery_controller_firmware:11.1:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:application_delivery_controller_firmware:12.0:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:citrix:netscaler_gateway_firmware:10.5:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:11.0:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:11.1:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:12.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:citrix:netscaler_application_delivery_controller:10.1:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_application_delivery_controller:10.5e:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_application_delivery_controller:10.5:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_application_delivery_controller:11.0:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_application_delivery_controller:11.1:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_application_delivery_controller:12.0:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:10.1:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:10.5e:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:10.5:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:11.0:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:11.1:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:12.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    citrix application delivery controller firmware 10.5
    citrix application delivery controller firmware 11.0
    citrix application delivery controller firmware 11.1
    citrix application delivery controller firmware 12.0
    citrix netscaler gateway firmware 10.5
    citrix netscaler gateway firmware 11.0
    citrix netscaler gateway firmware 11.1
    citrix netscaler gateway firmware 12.0
    citrix netscaler application delivery controller 10.1
    citrix netscaler application delivery controller 10.5e
    citrix netscaler application delivery controller 10.5
    citrix netscaler application delivery controller 11.0
    citrix netscaler application delivery controller 11.1
    citrix netscaler application delivery controller 12.0
    citrix netscaler gateway 10.1
    citrix netscaler gateway 10.5e
    citrix netscaler gateway 10.5
    citrix netscaler gateway 11.0
    citrix netscaler gateway 11.1
    citrix netscaler gateway 12.0