Vulnerability Name:

CVE-2018-7218

Assigned:2018-05-14
Published:2018-05-14
Updated:2018-06-27
Summary:The AppFirewall functionality in Citrix NetScaler Application Delivery Controller and NetScaler Gateway 10.5 before Build 68.7, 11.0 before Build 71.24, 11.1 before Build 58.13, and 12.0 before Build 57.24 allows remote attackers to execute arbitrary code via unspecified vectors.
CVSS v3 Severity:9.8 Critical (CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
9.8 Critical (CCN CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (CCN Temporal CVSS v3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
References:Source: SECTRACK
Type: VENDOR_ADVISORY
1040921

Source: XF
Type: UNKNOWN
citrix-netscaler-cve20187218-code-exec(143383)

Source: CONFIRM
Type: VENDOR_ADVISORY
https://support.citrix.com/article/CTX234869

Vulnerable Configuration:Configuration 1:
  • cpe:/o:citrix:application_delivery_controller_firmware:10.5:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:application_delivery_controller_firmware:11.0:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:application_delivery_controller_firmware:11.1:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:application_delivery_controller_firmware:12.0:*:*:*:*:*:*:*

  • Configuration 2:
  • cpe:/o:citrix:netscaler_gateway_firmware:10.5:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:11.0:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:11.1:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:netscaler_gateway_firmware:12.0:*:*:*:*:*:*:*

  • Configuration CCN 1:
  • cpe:/a:citrix:netscaler_application_delivery_controller:10.5e:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_application_delivery_controller:10.5:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_application_delivery_controller:11.0:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_application_delivery_controller:11.1:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_application_delivery_controller:12.0:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_gateway:10.5e:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_gateway:10.5:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_gateway:11.0:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_gateway:11.1:*:*:*:*:*:*:*
  • OR cpe:/a:citrix:netscaler_gateway:12.0:*:*:*:*:*:*:*

  • * Denotes that component is vulnerable
    BACK
    citrix application delivery controller firmware 10.5
    citrix application delivery controller firmware 11.0
    citrix application delivery controller firmware 11.1
    citrix application delivery controller firmware 12.0
    citrix netscaler gateway firmware 10.5
    citrix netscaler gateway firmware 11.0
    citrix netscaler gateway firmware 11.1
    citrix netscaler gateway firmware 12.0
    citrix netscaler application delivery controller 10.5e
    citrix netscaler application delivery controller 10.5
    citrix netscaler application delivery controller 11.0
    citrix netscaler application delivery controller 11.1
    citrix netscaler application delivery controller 12.0
    citrix netscaler gateway 10.5e
    citrix netscaler gateway 10.5
    citrix netscaler gateway 11.0
    citrix netscaler gateway 11.1
    citrix netscaler gateway 12.0