CVE-2018-5314 : Command injection vulnerability in Citrix NetScaler ADC and NetScaler Gateway 11

Command injection vulnerability in Citrix NetScaler ADC and NetScaler Gateway 11.0 before build 70.16, 11.1 before build 55.13, and 12.0 before build 53.13; and the NetScaler Load Balancing instance distributed with NetScaler SD-WAN/CloudBridge 4000, 4100, 5000 and 5100 WAN Optimization Edition 9.3.0 allows remote attackers to execute a system command or read arbitrary files via an SSH login prompt.

Published 2018-03-01 17:29:00

Updated 2019-10-03 00:03:26

Source MITRE

View at NVD, CVE.org

Vulnerability category: BypassGain privilege

Products affected by CVE-2018-5314

Citrix » Netscaler Sd-wan » Version: 9.3.0 Wan Optimization Edition
cpe:2.3:a:citrix:netscaler_sd-wan:9.3.0:*:*:*:wan_optimization:*:*:*
Matching versions
Citrix » Netscaler Application Delivery Controller » Version: 11.0
cpe:2.3:a:citrix:netscaler_application_delivery_controller:11.0:*:*:*:*:*:*:*
Matching versions
Citrix » Netscaler Application Delivery Controller » Version: 11.1
cpe:2.3:a:citrix:netscaler_application_delivery_controller:11.1:*:*:*:*:*:*:*
Matching versions
Citrix » Netscaler Application Delivery Controller » Version: 12.0
cpe:2.3:a:citrix:netscaler_application_delivery_controller:12.0:*:*:*:*:*:*:*
Matching versions
Citrix » Netscaler Gateway » Version: 11.0
cpe:2.3:a:citrix:netscaler_gateway:11.0:*:*:*:*:*:*:*
Matching versions
Citrix » Netscaler Gateway » Version: 12.0
cpe:2.3:a:citrix:netscaler_gateway:12.0:*:*:*:*:*:*:*
Matching versions
Citrix » Netscaler Gateway » Version: 11.1
cpe:2.3:a:citrix:netscaler_gateway:11.1:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2018-5314

EPSS FAQ

0.11%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 45 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2018-5314

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:P/I:N/A:N	10.0	2.9	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: None Availability Impact: None
7.5	HIGH	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N	3.9	3.6	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Unchanged Confidentiality: High Integrity: None Availability: None

CWE ids for CVE-2018-5314

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2018-5314

http://www.securitytracker.com/id/1040439

Citrix NetScaler ADC and NetScaler Gateway Authentication Bypass Lets Remote Users Obtain Potentially Sensitive Information on the Target System - SecurityTracker
Third Party Advisory;VDB Entry
http://www.securityfocus.com/bid/103186

Citrix NetScaler ADC and NetScaler Gateway CVE-2018-5314 Authentication Bypass Vulnerability
Third Party Advisory;VDB Entry
https://support.citrix.com/article/CTX232199

Authentication Bypass Vulnerability in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway
Vendor Advisory

Jump to

Vulnerability Details : CVE-2018-5314

Products affected by CVE-2018-5314

Exploit prediction scoring system (EPSS) score for CVE-2018-5314

CVSS scores for CVE-2018-5314

CWE ids for CVE-2018-5314

References for CVE-2018-5314