Vulnerability Name:

CVE-2022-27510 (CCN-239542)

Assigned:2022-11-08
Published:2022-11-08
Updated:2022-11-09
Summary:Unauthorized access to Gateway user capabilities
CVSS v3 Severity:9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
9.8 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-287
Vulnerability Consequences:Bypass Security
References:Source: MITRE
Type: CNA
CVE-2022-27510

Source: XF
Type: UNKNOWN
citrix-cve202227510-sec-bypass(239542)

Source: CCN
Type: CTX463706
Citrix Gateway and Citrix ADC Security Bulletin for CVE-2022-27510 CVE-2022-27513 and CVE-2022-27516

Source: MISC
Type: Vendor Advisory
https://support.citrix.com/article/CTX463706/citrix-gateway-and-citrix-adc-security-bulletin-for-cve202227510-cve202227513-and-cve202227516

Vulnerable Configuration:Configuration 1:
  • cpe:/a:citrix:gateway:*:*:*:*:*:*:*:* (Version >= 12.1 and < 12.1-65.21)
  • OR cpe:/a:citrix:gateway:*:*:*:*:*:*:*:* (Version >= 13.0 and < 13.0-88.12)
  • OR cpe:/a:citrix:gateway:*:*:*:*:*:*:*:* (Version >= 13.1 and < 13.1-33.41)

    • Configuration 2:
  • cpe:/o:citrix:application_delivery_controller_firmware:*:*:*:*:-:*:*:* (Version >= 12.1 and < 12.1-65.21)
  • OR cpe:/o:citrix:application_delivery_controller_firmware:*:*:*:*:-:*:*:* (Version >= 13.0 and < 13.0-88.12)
  • OR cpe:/o:citrix:application_delivery_controller_firmware:*:*:*:*:-:*:*:* (Version >= 13.1 and < 13.1-33.47)
  • AND
  • cpe:/h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:citrix:application_delivery_controller_firmware:*:*:*:*:fips:*:*:* (Version >= 12.1 and < 12.1-55.289)
  • OR cpe:/o:citrix:application_delivery_controller_firmware:*:*:*:*:ndcpp:*:*:* (Version >= 12.1 and < 12.1-55.289)
  • AND
  • cpe:/h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:citrix:gateway_firmware:12.1:*:*:*:*:*:*:*
  • OR cpe:/o:citrix:gateway_firmware:13.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    citrix gateway *
    citrix gateway *
    citrix gateway *
    citrix application delivery controller firmware *
    citrix application delivery controller firmware *
    citrix application delivery controller firmware *
    citrix application delivery controller -
    citrix application delivery controller firmware *
    citrix application delivery controller firmware *
    citrix application delivery controller -
    citrix gateway firmware 12.1
    citrix gateway firmware 13.0