CVE-2016-2071
Severity Score
9.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 11.x before 11.0 Build 64.34, 10.5 before 10.5 Build 59.13, and 10.5.e before Build 59.1305.e allows remote attackers to gain privileges via unspecified NS Web GUI commands.
Citrix NetScaler Application Delivery Controller (ADC) y NetScaler Gateway 11.x en versiones anteriores a 11.0 Build 64.34, 10.5 en versiones anteriores a 10.5 Build 59.13 y 10.5.e en versiones anteriores a Build 59.1305.e permite a atacantes remotos obtener privilegios a través de comandos NS Web GUI no especificados.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2016-01-26 CVE Reserved
- 2016-02-17 CVE Published
- 2024-08-05 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securitytracker.com/id/1035098 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://support.citrix.com/article/CTX206001 | 2016-12-03 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Citrix Search vendor "Citrix" | Netscaler Search vendor "Citrix" for product "Netscaler" | 10.5 Search vendor "Citrix" for product "Netscaler" and version "10.5" | - |
Affected
| in | Citrix Search vendor "Citrix" | Netscaler Application Delivery Controller Search vendor "Citrix" for product "Netscaler Application Delivery Controller" | - | - |
Safe
|
| Citrix Search vendor "Citrix" | Netscaler Search vendor "Citrix" for product "Netscaler" | 10.5e Search vendor "Citrix" for product "Netscaler" and version "10.5e" | - |
Affected
| in | Citrix Search vendor "Citrix" | Netscaler Application Delivery Controller Search vendor "Citrix" for product "Netscaler Application Delivery Controller" | - | - |
Safe
|
| Citrix Search vendor "Citrix" | Netscaler Search vendor "Citrix" for product "Netscaler" | 11.0 Search vendor "Citrix" for product "Netscaler" and version "11.0" | - |
Affected
| in | Citrix Search vendor "Citrix" | Netscaler Application Delivery Controller Search vendor "Citrix" for product "Netscaler Application Delivery Controller" | - | - |
Safe
|
| Citrix Search vendor "Citrix" | Netscaler Search vendor "Citrix" for product "Netscaler" | 10.5 Search vendor "Citrix" for product "Netscaler" and version "10.5" | - |
Affected
| in | Citrix Search vendor "Citrix" | Netscaler Gateway Search vendor "Citrix" for product "Netscaler Gateway" | - | - |
Safe
|
| Citrix Search vendor "Citrix" | Netscaler Search vendor "Citrix" for product "Netscaler" | 10.5e Search vendor "Citrix" for product "Netscaler" and version "10.5e" | - |
Affected
| in | Citrix Search vendor "Citrix" | Netscaler Gateway Search vendor "Citrix" for product "Netscaler Gateway" | - | - |
Safe
|
| Citrix Search vendor "Citrix" | Netscaler Search vendor "Citrix" for product "Netscaler" | 11.0 Search vendor "Citrix" for product "Netscaler" and version "11.0" | - |
Affected
| in | Citrix Search vendor "Citrix" | Netscaler Gateway Search vendor "Citrix" for product "Netscaler Gateway" | - | - |
Safe
|