{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-23T19:48:55.257","vulnerabilities":[{"cve":{"id":"CVE-2020-8247","sourceIdentifier":"support@hackerone.com","published":"2020-09-18T21:15:13.327","lastModified":"2024-11-21T05:38:35.100","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Citrix ADC and Citrix Gateway 13.0 before 13.0-64.35, Citrix ADC and NetScaler Gateway 12.1 before 12.1-58.15, Citrix ADC 12.1-FIPS before 12.1-55.187, Citrix ADC and NetScaler Gateway 12.0, Citrix ADC and NetScaler Gateway 11.1 before 11.1-65.12, Citrix SD-WAN WANOP 11.2 before 11.2.1a, Citrix SD-WAN WANOP 11.1 before 11.1.2a, Citrix SD-WAN WANOP 11.0 before 11.0.3f, Citrix SD-WAN WANOP 10.2 before 10.2.7b are vulnerable to escalation of privileges on the management interface."},{"lang":"es","value":"Citrix ADC y Citrix Gateway versiones 13.0 anteriores a 13.0-64.35, Citrix ADC y NetScaler Gateway versiones 12.1 anteriores a 12.1-58.15, Citrix ADC versiones 12.1-FIPS anteriores a 12.1-55.187, Citrix ADC y NetScaler Gateway versión 12.0, Citrix ADC y NetScaler Gateway versiones 11.1 anteriores a 11.1-65.12, Citrix SD-WAN WANOP versiones 11.2 anteriores a 11.2.1a, Citrix SD-WAN WANOP versiones 11.1 anteriores a 11.1.2a, Citrix SD-WAN WANOP versiones 11.0 anteriores a 11.0.3f, Citrix SD-WAN WANOP versiones 10.2 anteriores a 10.2.7b, son vulnerables a una escalada de privilegios en la interfaz de administración"}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H","baseScore":8.8,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:P/A:P","baseScore":6.5,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"support@hackerone.com","type":"Secondary","description":[{"lang":"en","value":"CWE-269"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-269"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"11.1","versionEndExcluding":"11.1-65.12","matchCriteriaId":"AD2A238E-72C4-4D74-B902-2EE8E602AAC1"},{"vulnerable":true,"criteria":"cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"12.1","versionEndExcluding":"12.1-58.15","matchCriteriaId":"1C991579-B6B8-4F07-9AF9-739452F1F5AA"},{"vulnerable":true,"criteria":"cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:*:*:*:*","versionStartIncluding":"13.0","versionEndExcluding":"13.0-64.35","matchCriteriaId":"ED09F4AE-DCC6-4C7D-BFA1-D22E16893C97"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*","matchCriteriaId":"80E69E10-6F40-4FE4-9D84-F6C25EAB79D8"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"11.1","versionEndExcluding":"11.1-65.12","matchCriteriaId":"2F98105E-37A4-46F4-BA82-A8E95372A370"},{"vulnerable":true,"criteria":"cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"13.0","versionEndExcluding":"13.0-64.35","matchCriteriaId":"178C6CA9-0068-4225-A209-E13A880ED188"},{"vulnerable":true,"criteria":"cpe:2.3:a:citrix:netscaler_gateway:*:*:*:*:*:*:*:*","versionStartIncluding":"12.1","versionEndExcluding":"12.1-58.15","matchCriteriaId":"CFAC08D1-1FE8-4910-9D50-F167537C7C91"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:citrix:sd-wan_wanop:*:*:*:*:*:*:*:*","versionStartIncluding":"10.2","versionEndExcluding":"10.2.7b","matchCriteriaId":"D76AEFBD-225E-45D3-B604-CAF0032BA861"},{"vulnerable":true,"criteria":"cpe:2.3:o:citrix:sd-wan_wanop:*:*:*:*:*:*:*:*","versionStartIncluding":"11.0","versionEndExcluding":"11.0.3f","matchCriteriaId":"7296BF8E-186C-4279-AF08-C3D1282322F0"},{"vulnerable":true,"criteria":"cpe:2.3:o:citrix:sd-wan_wanop:*:*:*:*:*:*:*:*","versionStartIncluding":"11.1","versionEndExcluding":"11.1.2a","matchCriteriaId":"92806100-D243-43CC-ACA7-DF9E95E2740D"},{"vulnerable":true,"criteria":"cpe:2.3:o:citrix:sd-wan_wanop:*:*:*:*:*:*:*:*","versionStartIncluding":"11.2","versionEndExcluding":"11.2.1a","matchCriteriaId":"4FB67ED6-6586-4280-A521-E1EDA81C68BE"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:citrix:sd-wan_wanop:-:*:*:*:*:*:*:*","matchCriteriaId":"10F0ACFD-9D48-43F6-A45C-D5F0313BB952"}]}]}],"references":[{"url":"https://support.citrix.com/article/CTX281474","source":"support@hackerone.com","tags":["Vendor Advisory"]},{"url":"https://support.citrix.com/article/CTX281474","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}