CVE-2022-27518: Citrix Application Delivery Controller (ADC) and Gateway Authentication Bypass Vulnerability
First published: Tue Dec 13 2022(Updated: )
Citrix Application Delivery Controller (ADC) and Gateway, when configured with SAML SP or IdP configuration, contain an authentication bypass vulnerability that allows an attacker to execute code as administrator.
Credit: secure@citrix.com secure@citrix.com secure@citrix.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Citrix Application Delivery Controller Firmware | >=12.1<12.1-55.291 | |
| Citrix Application Delivery Controller Firmware | >=12.1<12.1-55.291 | |
| Citrix Application Delivery Controller Firmware | >=12.1<12.1-65.25 | |
| Citrix Application Delivery Controller Firmware | >=13.0<13.0-58.32 | |
| Citrix Application Delivery Controller | ||
| Citrix Gateway Firmware | >=12.1<12.1-65.25 | |
| Citrix Gateway Firmware | >=13.0<13.0-58.32 | |
| Citrix Gateway | ||
| All of | ||
| Any of | ||
| Citrix Application Delivery Controller Firmware | >=12.1<12.1-55.291 | |
| Citrix Application Delivery Controller Firmware | >=12.1<12.1-55.291 | |
| Citrix Application Delivery Controller Firmware | >=12.1<12.1-65.25 | |
| Citrix Application Delivery Controller Firmware | >=13.0<13.0-58.32 | |
| Citrix Application Delivery Controller | ||
| All of | ||
| Any of | ||
| Citrix Gateway Firmware | >=12.1<12.1-65.25 | |
| Citrix Gateway Firmware | >=13.0<13.0-58.32 | |
| Citrix Gateway | ||
| Citrix Application Delivery Controller (ADC) and Gateway | ||
| All of | ||
| Any of | ||
| >=12.1<12.1-55.291 | ||
| >=12.1<12.1-55.291 | ||
| >=12.1<12.1-65.25 | ||
| >=13.0<13.0-58.32 | ||
| All of | ||
| Any of | ||
| >=12.1<12.1-65.25 | ||
| >=13.0<13.0-58.32 | ||
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://support.citrix.com/article/CTX474995
- https://www.bleepingcomputer.com/news/security/state-hackers-turn-to-massive-orb-proxy-networks-to-evade-detection/
- https://www.citrix.com/blogs/2022/12/13/critical-security-update-now-available-for-citrix-adc-citrix-gateway/;
- https://nvd.nist.gov/vuln/detail/CVE-2022-27518
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2022-27518.
What is the title of this vulnerability?
The title of this vulnerability is Citrix Application Delivery Controller (ADC) and Gateway Authentication Bypass Vulnerability.
What is the affected software?
The affected software is Citrix Application Delivery Controller (ADC) and Gateway.
How does the vulnerability work?
The vulnerability allows an attacker to execute code as an administrator by bypassing authentication when Citrix Application Delivery Controller (ADC) and Gateway are configured with SAML SP or IdP configuration.
Is there a fix available for this vulnerability?
Yes, a critical security update is available for Citrix ADC and Citrix Gateway to address this vulnerability.
- collector/nvd-index
- agent/author
- agent/type
- agent/title
- agent/weakness
- agent/first-publish-date
- agent/description
- collector/bleeping-computer
- source/BleepingComputer
- alias/CVE-2022-27518
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/event
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/references
- agent/tags
- collector/nvd-cve
- vendor/citrix
- canonical/citrix application delivery controller firmware
- version/citrix application delivery controller firmware/12.1
- version/citrix application delivery controller firmware/13.0
- canonical/citrix application delivery controller
- canonical/citrix gateway firmware
- version/citrix gateway firmware/12.1
- version/citrix gateway firmware/13.0
- canonical/citrix gateway
- canonical/citrix application delivery controller (adc) and gateway