Home

Description

Open redirect vulnerability allows a remote unauthenticated attacker to redirect users to arbitrary websites in NetScaler ADC and NetScaler Gateway

PUBLISHED Reserved 2024-05-29 | Published 2024-07-10 | Updated 2024-08-01 | Assigner Citrix




MEDIUM: 5.1CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Product status

Default status
unaffected

14.1 (patch) before 25.53
affected

13.1 (patch) before 53.17
affected

13.0 (patch) before 92.13
affected

13.1-FIPS (patch) before 37.183
affected

12.1-FIPS (patch) before 55.304
affected

12.1-NDcPP (patch) before 55.304
affected

References

support.citrix.com/...lletin-for-cve20245491-and-cve20245492

cve.org (CVE-2024-5492)

nvd.nist.gov (CVE-2024-5492)

Download JSON