CVE-2022-27506

Summary

Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI

Affected Software

VendorProductVersion RangeStatus
CitirxCitrix SD-WANunspecified < Citrix SD-WAN Center Management Console versions 11.4.3affected
CitirxCitrix SD-WANunspecified < Citrix SD-WAN Standard/Premium Edition Appliance versions 11.4.1affected
CitirxCitrix SD-WANCitrix SD-WAN Orchestrator for On-Premises versions 13.2.1affected

Weaknesses

  • CWE-798: CWE-798 Use of Hard-coded Credentials

ADP Enrichment

CVE Program Container

Additional References

References