Description
Citrix Gateway 11.1, 12.0, and 12.1 allows Cache Poisoning. NOTE: Citrix disputes this as not a vulnerability. By default, Citrix ADC only caches static content served under certain URL paths for Citrix Gateway usage. No dynamic content is served under these paths, which implies that those cached pages would not change based on parameter values. All other data traffic going through Citrix Gateway are NOT cached by default
References (3)
Core 3
Core References
Vendor Advisory x_refsource_misc
https://support.citrix.com/search
Exploit, Mailing List, Third Party Advisory x_refsource_misc
http://seclists.org/fulldisclosure/2020/Mar/8
Exploit, Third Party Advisory x_refsource_misc
http://packetstormsecurity.com/files/156660/Citrix-Gateway-11.1-12.0-12.1-Cache-Poisoning.html
Scores
CVSS v3
5.4
EPSS
0.0143
EPSS Percentile
69.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Details
CWE
CWE-444
Status
published
Products (3)
citrix/gateway_firmware
11.1
citrix/gateway_firmware
12.0
citrix/gateway_firmware
12.1
Published
Mar 06, 2020
Tracked Since
Feb 18, 2026