CVE-2020-8193

MEDIUM KEV NUCLEI

Citrix ADC/Gateway <13.0-58.30 - Info Disclosure

Title source: llm

Exploitation Summary

CVE-2020-8193 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added November 3, 2021. EIP tracks 5 public exploits from researchers including jas502n, Airboi, PR3R00T. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository contains a functional Python exploit for CVE-2020-8193, targeting Citrix ADC. The exploit chains session manipulation and directory traversal to achieve arbitrary file read (LFI).

Description

Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows unauthenticated access to certain URL endpoints.

Exploits (5)

nomisec WORKING POC 86 stars

by jas502n · infoleak

https://github.com/jas502n/CVE-2020-8193

View Code ZIP pw:eip

This repository contains a functional Python exploit for CVE-2020-8193, targeting Citrix ADC. The exploit chains session manipulation and directory traversal to achieve arbitrary file read (LFI).

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Citrix ADC (NetScaler ADC)

No auth needed

Prerequisites: Network access to Citrix ADC management interface

MITRE ATT&CK

T1005 - Data from Local System T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec WORKING POC 45 stars

by Airboi · remote

https://github.com/Airboi/Citrix-ADC-RCE-CVE-2020-8193

View Code ZIP pw:eip

This repository contains a functional proof-of-concept exploit for CVE-2020-8193, demonstrating a remote code execution vulnerability in Citrix ADC. The exploit involves a series of HTTP requests to create a session, fix the session, and retrieve a random key, which can be used to achieve RCE.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Citrix ADC

No auth needed

Prerequisites: Network access to the Citrix ADC management interface

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec SCANNER 8 stars

by PR3R00T · remote

https://github.com/PR3R00T/CVE-2020-8193-Citrix-Scanner

View Code ZIP pw:eip

This repository contains a Python script that scans for CVE-2020-8193, an authentication bypass vulnerability in Citrix ADC. The script checks for the presence of a session cookie after sending a crafted request, indicating potential vulnerability.

Classification

Scanner 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Citrix ADC (NetScaler ADC)

No auth needed

Prerequisites: List of target URLs in a text file

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec WRITEUP 6 stars

by Zeop-CyberSec · remote

https://github.com/Zeop-CyberSec/citrix_adc_netscaler_lfi

View Code ZIP pw:eip

This repository provides a detailed technical analysis of CVE-2020-8193, including HTTP request/response examples for session manipulation and LFI exploitation in Citrix ADC/Netscaler. It does not contain functional exploit code but offers in-depth vulnerability research.

Classification

Writeup 90%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Citrix ADC/Netscaler (e.g., 12.1 build 55.18)

Auth required

Prerequisites: Valid session ID · Access to vulnerable Citrix ADC/Netscaler instance

MITRE ATT&CK

T1083 - File and Directory Discovery T1005 - Data from Local System

devstral-2 · analyzed Feb 18, 2026 Full analysis →

nomisec WORKING POC 2 stars

by ctlyz123 · poc

https://github.com/ctlyz123/CVE-2020-8193

View Code ZIP pw:eip

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Citrix ADC

No auth needed

Prerequisites: Access to the Citrix ADC management interface

MITRE ATT&CK

T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 18, 2026 Full analysis →

Nuclei Templates (1)

Citrix - Local File Inclusion

MEDIUMby pdteam

References (3)

Core 3

Core References

Vendor Advisory x_refsource_misc

https://support.citrix.com/article/CTX276688

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/160047/Citrix-ADC-NetScaler-Local-File-Inclusion.html

US Government Resource

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2020-8193

Scores

CVSS v3 6.5

EPSS 0.9439

EPSS Percentile 100.0%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation active

Automatable yes

Technical Impact partial

Details

CISA KEV 2021-11-03

VulnCheck KEV 2020-09-15

InTheWild.io 2021-07-23

ENISA EUVD EUVD-2020-29070

CWE

CWE-284 CWE-287

Status published

Products (4)

citrix/application_delivery_controller_firmware 10.5 - 10.5-70.18

citrix/gateway_firmware 13.0 - 13.0-58.30

citrix/netscaler_gateway_firmware 10.5 - 10.5-70.18

citrix/sd-wan_wanop 10.2 - 10.2.7

Published Jul 10, 2020

KEV Added Nov 03, 2021

Tracked Since Feb 18, 2026