CVE-2016-2072
MEDIUMCitrix NetScaler ADC and Gateway Clickjacking in Administrative Web Interface
Title source: llmDescription
The Administrative Web Interface in Citrix NetScaler Application Delivery Controller (ADC) and NetScaler Gateway 11.x before 11.0 Build 64.34, 10.5 before 10.5 Build 59.13, 10.5.e before Build 59.1305.e, and 10.1 allows remote attackers to conduct clickjacking attacks via unspecified vectors.
References (2)
Core 2
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1035098
Vendor Advisory x_refsource_confirm
http://support.citrix.com/article/CTX206001
Scores
CVSS v3
6.1
EPSS
0.0024
EPSS Percentile
46.8%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Details
CWE
CWE-254
Status
published
Products (4)
citrix/netscaler
10.1
citrix/netscaler
10.5
citrix/netscaler
10.5e
citrix/netscaler
11.0
Published
Feb 17, 2016
Tracked Since
Feb 18, 2026