CVE-2020-10111
First published: Fri Mar 06 2020(Updated: )
** DISPUTED ** Citrix Gateway 11.1, 12.0, and 12.1 has an Inconsistent Interpretation of HTTP Requests. NOTE: Citrix disputes the reported behavior as not a security issue. Citrix ADC only caches HTTP/1.1 traffic for performance optimization.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Citrix Gateway Firmware | =11.1 | |
| Citrix Gateway Firmware | =12.0 | |
| Citrix Gateway Firmware | =12.1 | |
| =11.1 | ||
| =12.0 | ||
| =12.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this Citrix Gateway issue?
The vulnerability ID for this Citrix Gateway issue is CVE-2020-10111.
What is the severity of CVE-2020-10111?
The severity of CVE-2020-10111 is high with a CVSS score of 7.5.
Which software versions are affected by CVE-2020-10111?
The Citrix Gateway firmware versions 11.1, 12.0, and 12.1 are affected by CVE-2020-10111.
What is the reported behavior of CVE-2020-10111?
The reported behavior of CVE-2020-10111 is an inconsistent interpretation of HTTP requests.
Is there a fix available for CVE-2020-10111?
Citrix disputes the reported behavior as not a security issue, so there may not be a patch specifically for CVE-2020-10111.
- collector/nvd-index
- agent/type
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/severity
- agent/weakness
- agent/references
- agent/last-modified-date
- agent/author
- agent/status
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- status/disputed
- vendor/citrix
- canonical/citrix gateway firmware
- version/citrix gateway firmware/11.1
- version/citrix gateway firmware/12.0
- version/citrix gateway firmware/12.1