CVE-2021-22927
N/A
N/A
Summary
A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an attacker to hijack a session.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Citrix ADC, Citrix Gateway | Citrix ADC and Citrix Gateway 13.0-82.45 and later releases of 13.0 | affected |
| n/a | Citrix ADC, Citrix Gateway | Citrix ADC and Citrix Gateway 12.1-62.27 and later releases of 12.1 | affected |
| n/a | Citrix ADC, Citrix Gateway | Citrix ADC and NetScaler Gateway 11.1-65.22 and later releases of 11.1 | affected |
| n/a | Citrix ADC, Citrix Gateway | Citrix ADC 12.1-FIPS 12.1-55.247 and later releases of 12.1-FIPS | affected |
Weaknesses
- CWE-384: Session Fixation (CWE-384)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.