CVE-2021-22927

Published: Aug 5, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

A session fixation vulnerability exists in Citrix ADC and Citrix Gateway 13.0-82.45 when configured SAML service provider that could allow an attacker to hijack a session.

Vendor	Product	Versions
n/a	Citrix ADC, Citrix Gateway	affected `Citrix ADC and Citrix Gateway 13.0-82.45 and later releases of 13.0` affected `Citrix ADC and Citrix Gateway 12.1-62.27 and later releases of 12.1` affected `Citrix ADC and NetScaler Gateway 11.1-65.22 and later releases of 11.1` affected `Citrix ADC 12.1-FIPS 12.1-55.247 and later releases of 12.1-FIPS`

Weaknesses (CWE)

CWE-384

References

https://support.citrix.com/article/CTX319135

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-22927

Description

Affected Products

Weaknesses (CWE)

References