Lucene search

[email protected]CVE-2008-2528

HistoryJun 03, 2008 - 3:32 p.m.

CVE-2008-2528

2008-06-0315:32:00

CWE-287

[email protected]

web.nvd.nist.gov

cve-2008-2528

citrix

access gateway

vulnerability

network resources

authentication bypass

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.6%

JSON

Unspecified vulnerability in Citrix Access Gateway Standard Edition 4.5.7 and earlier and Advanced Edition 4.5 HF2 and earlier allows attackers to bypass authentication and gain “access to network resources” via unspecified vectors.

Affected configurations

NVD

Node

citrixaccess_gatewayRange≤4.5advancedhf2

citrixaccess_gatewayRange≤4.5.7standard

citrixaccess_gatewayMatch4.5.5standard

citrixaccess_gatewayMatch4.5.6standard

CPENameOperatorVersion
citrix:access_gatewaycitrix access gatewayle4.5
citrix:access_gatewaycitrix access gatewayle4.5.7
citrix:access_gatewaycitrix access gatewayeq4.5.5
citrix:access_gatewaycitrix access gatewayeq4.5.6

CPE	Name	Operator	Version
citrix:access_gateway	citrix access gateway	le	4.5
citrix:access_gateway	citrix access gateway	le	4.5.7
citrix:access_gateway	citrix access gateway	eq	4.5.5
citrix:access_gateway	citrix access gateway	eq	4.5.6

References

secunia.com/advisories/30175

support.citrix.com/article/CTX116930

www.securityfocus.com/bid/29174

www.securitytracker.com/id?1020025

www.vupen.com/english/advisories/2008/1474/references

exchange.xforce.ibmcloud.com/vulnerabilities/42356

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.6%

JSON

Related for CVE-2008-2528

prion1 cvelist1 nvd1