CVE-2013-6941

2014-03-1113:00:36

[email protected]

web.nvd.nist.gov

cve-2013-6941

citrix

netscaler

adc

vulnerability

breakout

nvd

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

6.6 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

65.2%

JSON

Unspecified vulnerability in Citrix NetScaler Application Delivery Controller (ADC) 9.3.x before 9.3-64.4, 10.0 before 10.0-77.5, and 10.1 before 10.1-118.7 allows users to “breakout” of the shell via unknown vectors.

Affected configurations

NVD

Node

citrixnetscaler_application_delivery_controller_firmwareMatch9.3\(1\)

citrixnetscaler_application_delivery_controller_firmwareMatch9.3.e

citrixnetscaler_application_delivery_controller_firmwareMatch10.0

citrixnetscaler_application_delivery_controller_firmwareMatch10.1

CPENameOperatorVersion
citrix:netscaler_application_delivery_controller_firmwarecitrix netscaler application delivery controller firmwareeq9.3\(1\)
citrix:netscaler_application_delivery_controller_firmwarecitrix netscaler application delivery controller firmwareeq9.3.e
citrix:netscaler_application_delivery_controller_firmwarecitrix netscaler application delivery controller firmwareeq10.0
citrix:netscaler_application_delivery_controller_firmwarecitrix netscaler application delivery controller firmwareeq10.1

CPE	Name	Operator	Version
citrix:netscaler_application_delivery_controller_firmware	citrix netscaler application delivery controller firmware	eq	9.3\(1\)
citrix:netscaler_application_delivery_controller_firmware	citrix netscaler application delivery controller firmware	eq	9.3.e
citrix:netscaler_application_delivery_controller_firmware	citrix netscaler application delivery controller firmware	eq	10.0
citrix:netscaler_application_delivery_controller_firmware	citrix netscaler application delivery controller firmware	eq	10.1