Citrix ADC, Gateway, and SD-WAN WANOP Appliance Authorization Bypass Vulnerability
Details
CISA date
2021-11-03
Affected versions
Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance
Summary
Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an authorization bypass vulnerability that may allow unauthenticated access to certain URL endpoints. The attacker must have access to the NetScaler IP (NSIP) in order to perform exploitation.
Remediation
Apply updates per vendor instructions.
Exploit info
No exploit-tagged NVD references in our cache; see the CISA KEV link below.
TopVuln sends digest emails with high-risk CVE picks across multiple authoritative sources—curated with EPSS and AI. Choose daily per-stream emails and optional weekly or monthly roundups.