CVE-2019-12044: Buffer Overflow
First published: Wed May 22 2019(Updated: )
A Buffer Overflow exists in Citrix NetScaler Gateway 10.5.x before 10.5.70.x, 11.1.x before 11.1.59.10, 12.0.x before 12.0.59.8, and 12.1.x before 12.1.49.23 and Citrix Application Delivery Controller 10.5.x before 10.5.70.x, 11.1.x before 11.1.59.10, 12.0.x before 12.0.59.8, and 12.1.x before 12.1.49.23.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NetScaler Gateway | >=10.5.0<10.5.70 | |
| NetScaler Gateway | >=11.1.0<11.1.59.10 | |
| NetScaler Gateway | >=12.0.0<12.0.59.8 | |
| NetScaler Gateway | >=12.1.0<12.1.49.23 | |
| Citrix NetScaler Access Gateway | ||
| Citrix Application Delivery Controller Firmware | >=10.5.0<10.5.70 | |
| Citrix Application Delivery Controller Firmware | >=11.1.0<11.1.59.10 | |
| Citrix Application Delivery Controller Firmware | >=12.0.0<12.0.59.8 | |
| Citrix Application Delivery Controller Firmware | >=12.1.0<12.1.49.23 | |
| NetScaler ADC |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2019-12044?
CVE-2019-12044 is a vulnerability that exists in Citrix NetScaler Gateway and Citrix Application Delivery Controller, allowing a buffer overflow attack.
What is the severity of CVE-2019-12044?
The severity of CVE-2019-12044 is high with a CVSS score of 7.5.
Which versions of Citrix NetScaler Gateway are affected by CVE-2019-12044?
Citrix NetScaler Gateway 10.5.x before 10.5.70.x, 11.1.x before 11.1.59.10, 12.0.x before 12.0.59.8, and 12.1.x before 12.1.49.23 are affected by CVE-2019-12044.
How can I fix CVE-2019-12044?
To fix CVE-2019-12044, it is recommended to upgrade to Citrix NetScaler Gateway version 10.5.70.x, 11.1.59.10, 12.0.59.8, or 12.1.49.23.
Where can I find more information about CVE-2019-12044?
More information about CVE-2019-12044 can be found on the Citrix support website at https://support.citrix.com/article/CTX249976.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/remedy
- agent/first-publish-date
- agent/description
- agent/event
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/citrix
- canonical/netscaler gateway
- version/netscaler gateway/10.5.0
- version/netscaler gateway/11.1.0
- version/netscaler gateway/12.0.0
- version/netscaler gateway/12.1.0
- canonical/citrix netscaler access gateway
- canonical/citrix application delivery controller firmware
- version/citrix application delivery controller firmware/10.5.0
- version/citrix application delivery controller firmware/11.1.0
- version/citrix application delivery controller firmware/12.0.0
- version/citrix application delivery controller firmware/12.1.0
- canonical/netscaler adc