CVE-2020-8191 : Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-

Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows reflected Cross Site Scripting (XSS).

Published 2020-07-10 16:15:12

Updated 2020-07-13 20:40:28

Source HackerOne

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Products affected by CVE-2020-8191

Citrix » Netscaler Gateway Firmware
Versions from including (>=) 11.1 and before (<) 11.1-64.14
cpe:2.3:o:citrix:netscaler_gateway_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Netscaler Gateway » Version: N/A
Citrix » Netscaler Gateway Firmware
Versions from including (>=) 12.1 and before (<) 12.1-57.18
cpe:2.3:o:citrix:netscaler_gateway_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Netscaler Gateway » Version: N/A
Citrix » Netscaler Gateway Firmware
Versions from including (>=) 12.0 and before (<) 12.0-63.21
cpe:2.3:o:citrix:netscaler_gateway_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Netscaler Gateway » Version: N/A
Citrix » Netscaler Gateway Firmware
Versions from including (>=) 10.5 and before (<) 10.5-70.18
cpe:2.3:o:citrix:netscaler_gateway_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Netscaler Gateway » Version: N/A
Citrix » Application Delivery Controller Firmware
Versions from including (>=) 13.0 and before (<) 13.0-58.30
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Application Delivery Controller » Version: N/A
Citrix » Application Delivery Controller Firmware
Versions from including (>=) 12.0 and before (<) 12.0-63.21
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Application Delivery Controller » Version: N/A
Citrix » Application Delivery Controller Firmware
Versions from including (>=) 11.1 and before (<) 11.1-64.14
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Application Delivery Controller » Version: N/A
Citrix » Application Delivery Controller Firmware
Versions from including (>=) 12.1 and before (<) 12.1-57.18
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Application Delivery Controller » Version: N/A
Citrix » Application Delivery Controller Firmware
Versions from including (>=) 10.5 and before (<) 10.5-70.18
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Application Delivery Controller » Version: N/A
Citrix » Gateway Firmware
Versions from including (>=) 13.0 and before (<) 13.0-58.30
cpe:2.3:o:citrix:gateway_firmware:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » Gateway » Version: N/A
Citrix » Sd-wan Wanop
Versions from including (>=) 11.1 and before (<) 11.1.1a
cpe:2.3:o:citrix:sd-wan_wanop:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » 4000-wo » Version: N/A
When used together with: Citrix » 4100-wo » Version: N/A
When used together with: Citrix » 5000-wo » Version: N/A
When used together with: Citrix » 5100-wo » Version: N/A
Citrix » Sd-wan Wanop
Versions from including (>=) 11.0 and before (<) 11.0.3d
cpe:2.3:o:citrix:sd-wan_wanop:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » 4000-wo » Version: N/A
When used together with: Citrix » 4100-wo » Version: N/A
When used together with: Citrix » 5000-wo » Version: N/A
When used together with: Citrix » 5100-wo » Version: N/A
Citrix » Sd-wan Wanop
Versions from including (>=) 10.2 and before (<) 10.2.7
cpe:2.3:o:citrix:sd-wan_wanop:*:*:*:*:*:*:*:*
Matching versions
When used together with: Citrix » 4000-wo » Version: N/A
When used together with: Citrix » 4100-wo » Version: N/A
When used together with: Citrix » 5000-wo » Version: N/A
When used together with: Citrix » 5100-wo » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2020-8191

EPSS FAQ

90.01%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 100 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-8191

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
4.3	MEDIUM	AV:N/AC:M/Au:N/C:N/I:P/A:N	8.6	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
6.1	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N	2.8	2.7	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: Required Scope: Changed Confidentiality: Low Integrity: Low Availability: None

CWE ids for CVE-2020-8191

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.
Assigned by:
- nvd@nist.gov (Primary)
- support@hackerone.com (Secondary)

References for CVE-2020-8191

https://support.citrix.com/article/CTX276688

Citrix Application Delivery Controller, Citrix Gateway, and Citrix SD-WAN WANOP appliance Security Update
Vendor Advisory

CVEs referencing this url

Jump to

Vulnerability Details : CVE-2020-8191

Products affected by CVE-2020-8191

Exploit prediction scoring system (EPSS) score for CVE-2020-8191

CVSS scores for CVE-2020-8191

CWE ids for CVE-2020-8191

References for CVE-2020-8191