CVE-2019-12044
HIGHCitrix NetScaler Gateway/ADC Buffer Overflow in 10.5.x-10.5.70.x, 11.1.x-11.1.59.10, 12.0.x-12.0.59.8, 12.1.x-12.1.49.23
Title source: llmDescription
A Buffer Overflow exists in Citrix NetScaler Gateway 10.5.x before 10.5.70.x, 11.1.x before 11.1.59.10, 12.0.x before 12.0.59.8, and 12.1.x before 12.1.49.23 and Citrix Application Delivery Controller 10.5.x before 10.5.70.x, 11.1.x before 11.1.59.10, 12.0.x before 12.0.59.8, and 12.1.x before 12.1.49.23.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_misc
https://support.citrix.com/v1/search?searchQuery=%22%22&lang=en&sort=cr_date_desc&prod=&pver=&ct=Security+Bulletin
Patch, Vendor Advisory x_refsource_confirm
https://support.citrix.com/article/CTX249976
Scores
CVSS v3
7.5
EPSS
0.0057
EPSS Percentile
68.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
Status
published
Products (2)
citrix/netscaler_application_delivery_controller_firmware
10.5.0 - 10.5.70
citrix/netscaler_gateway_firmware
10.5.0 - 10.5.70
Published
May 22, 2019
Tracked Since
Feb 18, 2026