CVE-2023-24487

Arbitrary file read in Citrix ADC and Citrix Gateway?
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:citrix:application_delivery_controller:*:*:*:*:fips:*:*:*
cpe:2.3:a:citrix:application_delivery_controller:*:*:*:*:ndcpp:*:*:*
cpe:2.3:a:citrix:application_delivery_controller:*:*:*:*:-:*:*:*
cpe:2.3:a:citrix:application_delivery_controller:*:*:*:*:-:*:*:*
cpe:2.3:a:citrix:application_delivery_controller:*:*:*:*:fips:*:*:*
cpe:2.3:a:citrix:application_delivery_controller:*:*:*:*:-:*:*:*
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*

History

21 Nov 2024, 07:47

Type Values Removed Values Added
References () https://support.citrix.com/article/CTX477714/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202324487-cve202324488 - Vendor Advisory () https://support.citrix.com/article/CTX477714/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202324487-cve202324488 - Vendor Advisory
CVSS v2 : unknown
v3 : 7.5
v2 : unknown
v3 : 6.3

18 Jul 2023, 17:25

Type Values Removed Values Added
First Time Citrix application Delivery Controller
Citrix
Citrix gateway
CWE NVD-CWE-noinfo
References (MISC) https://support.citrix.com/article/CTX477714/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202324487-cve202324488 - (MISC) https://support.citrix.com/article/CTX477714/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202324487-cve202324488 - Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 7.5
CPE cpe:2.3:a:citrix:application_delivery_controller:*:*:*:*:fips:*:*:*
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*
cpe:2.3:a:citrix:application_delivery_controller:*:*:*:*:ndcpp:*:*:*
cpe:2.3:a:citrix:application_delivery_controller:*:*:*:*:-:*:*:*

10 Jul 2023, 21:15

Type Values Removed Values Added
New CVE

Information

Published : 2023-07-10 21:15

Updated : 2024-11-21 07:47


NVD link : CVE-2023-24487

Mitre link : CVE-2023-24487

CVE.ORG link : CVE-2023-24487


JSON object : View

Products Affected

citrix

  • gateway
  • application_delivery_controller
CWE
CWE-253

Incorrect Check of Function Return Value

NVD-CWE-noinfo