CVSS: 7.5EPSS: 0%CPEs: 10EXPL: 0CVE-2019-12044
https://notcve.org/view.php?id=CVE-2019-12044
A Buffer Overflow exists in Citrix NetScaler Gateway 10.5.x before 10.5.70.x, 11.1.x before 11.1.59.10, 12.0.x before 12.0.59.8, and 12.1.x before 12.1.49.23 and Citrix Application Delivery Controller 10.5.x before 10.5.70.x, 11.1.x before 11.1.59.10, 12.0.x before 12.0.59.8, and 12.1.x before 12.1.49.23. Existe un desbordamiento de búfer en Citrix NetScaler Gateway versiones 10.5.x, anteriores 10.5.70.x, versiones 11.1.x, anteriores 11.1.59.10, versiones 12.0.x ,anteriores 12.0.59.8, y versiones 12.1.x anterior 12.1.49.23 y Citrix Application Delivery Controller versiones 10.5.x, anterior 10.5.70.x, versión 11.1.x anterior 11.1.59.10, versión 12.0.x anterior 12.0.59.8,y versión 12.1.x anterior 12.1.49.23. • https://support.citrix.com/article/CTX249976 https://support.citrix.com/v1/search?searchQuery=%22%22&lang=en&sort=cr_date_desc&prod=&pver=&ct=Security+Bulletin • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 4.8EPSS: 0%CPEs: 4EXPL: 0CVE-2018-18517
https://notcve.org/view.php?id=CVE-2018-18517
Citrix NetScaler Gateway 10.5.x before 10.5.69.003, 11.1.x before 11.1.59.004, 12.0.x before 12.0.58.7, and 12.1.x before 12.1.49.1 has XSS. Citrix NetScaler Gateway en versiones 10.5.x anteriores a la 10.5.69.003, versiones 11.1.x anteriores a la 11.1.59.004, versiones 12.0.x anteriores a la 12.0.58.7 y versiones 12.1.x anteriores a la 12.1.49.1 tiene Cross-Site Scripting (XSS). • http://www.securityfocus.com/bid/105725 http://www.securitytracker.com/id/1042023 https://support.citrix.com/article/CTX239002 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •