Lucene search
PRIOn knowledge basePRION:CVE-2020-8300HistoryJun 16, 2021 - 2:15 p.m.
Improper access control
2021-06-1614:15:00
PRIOn knowledge base
www.prio-n.com
4
Citrix ADC and Citrix/NetScaler Gateway before 13.0-82.41, 12.1-62.23, 11.1-65.20 and Citrix ADC 12.1-FIPS before 12.1-55.238 suffer from improper access control allowing SAML authentication hijack through a phishing attack to steal a valid user session. Note that Citrix ADC or Citrix Gateway must be configured as a SAML SP or a SAML IdP for this to be possible.
References
Related
cve
cve
CVE-2020-8300
2021-06-16 14:15:08
nvd
nvd
CVE-2020-8300
2021-06-16 14:15:08
githubexploit
githubexploit
Exploit for Improper Privilege Management in Citrix Gateway
2021-06-15 07:21:16
cvelist
cvelist
CVE-2020-8300
2021-06-16 13:08:16
nessus
nessus
Citrix ADC and Citrix NetScaler Gateway Multiple Vulnerabilities (CTX297155)
2021-06-18 00:00:00
citrix
citrix