HomePentest-Tools.com Logo

Citrix ADC Gateway - Remote Code Execution (CVE-2022-27518)

Severity
CVSSv3 Score
9.8
Vulnerability description

CVE-2022-27518 is a Remote Code Execution vulnerability affecting Citrix ADC Gateway. This vulnerability allows an unauthenticated remote attacker to gain remote code execution on a device runnig Citrix ADC or Citrix Gateway when configured as a SAML service provider or SAML identity provider. We have detected this vulnerability by sending crafted requests to the target and obtaining a hash that we managed to map to an exact version of Citrix ADC.

Risk description

The risk exists that an unauthenticated remote attacker could gain Remote Code Execution access which will result in a fully compromised server through which they could steal confidential information, install ransomware, or pivot to the internal network.

Recommendation

Update Citrix ADC to one of the currently fixed versions.

Codename
Not available
Detectable with
Network Scanner
Exploitable with Sniper
No
Vuln date
Dec 2022
Published at
Updated at
Software Type
Firewall
Vendor
Citrix Systems, Inc.
Product
ADC