Home / Vulnerabilities / CVE-2020-8196

MEDIUM SEVERITY

CVE-2020-8196

Citrix · Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance

Citrix ADC, Gateway, and SD-WAN WANOP Appliance Information Disclosure Vulnerability

Technical Severity

MEDIUM

4.3 / 10

Minimal Risk Critical

Vector Specification

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Exploitation Likelihood

70.66 %

Predictive Probability

Percentile Rank

98.7 th

Documented as more likely to be exploited than 98.7% of known CVEs.

Detection Date

Nov 03, 2021

Remediation Due

May 03, 2022

CISA Catalog Active

Threat Analysis

Citrix ADC, Citrix Gateway, and multiple Citrix SD-WAN WANOP appliance models contain an information disclosure vulnerability.

Apply updates per vendor instructions.

Vendor Identity

Citrix

Affected Product

Application Delivery Controller (ADC), Gateway, and SD-WAN WANOP Appliance

Ransomware Status

Campaign Use Unknown

Weakness Classification

CWE-284

National Vulnerability Database

https://nvd.nist.gov/vuln/detail/CVE-2020-8196