CVE-2022-27509

Severity CVSS v4.0:
Pending analysis
Type:
CWE-601 URL Redirection to Untrusted Site ('Open Redirect')
Publication date:
28/07/2022
Last modified:
05/08/2022

Description

Unauthenticated redirection to a malicious website

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:* 12.1 (including) 12.1-65.15 (excluding)
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:* 13.0 (including) 13.0-86.17 (excluding)
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:* 13.1 (including) 13.1-24.38 (excluding)
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:* 12.1 (including) 12.1-65.15 (excluding)
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:* 13.0 (including) 13.0-86.17 (excluding)
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:* 13.1 (including) 13.1-24.38 (excluding)
cpe:2.3:h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:fips:*:*:* 12.1 (including) 12.1-55.282 (excluding)
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:ndcpp:*:*:* 12.1 (including) 12.1-55.282 (excluding)
cpe:2.3:h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*


References to Advisories, Solutions, and Tools