Memory safety vulnerability leading to memory corruption and Denial of Service in NetScaler ADC and Gateway if the appliance must be configured as a Gateway (VPN Vserver) with RDP Feature enabled OR the appliance must be configured as a Gateway (VPN Vserver) and RDP Proxy Server Profile is created and set to Gateway (VPN Vserver) OR the appliance must be configured as a Auth Server (AAA Vserver) with RDP Feature enabled
History

Fri, 22 Nov 2024 12:00:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L'}


Wed, 13 Nov 2024 20:15:00 +0000

Type Values Removed Values Added
First Time appeared Netscaler
Netscaler adc
Netscaler gateway
Netscaler netscaler-adc 12.1-fips
Netscaler netscaler-adc 12.1-ndcpp
Netscaler netscaler-adc 13.1-fips
CPEs cpe:2.3:a:netscaler:adc:*:*:*:*:*:*:*:*
cpe:2.3:a:netscaler:gateway:*:*:*:*:*:*:*:*
cpe:2.3:a:netscaler:netscaler-adc_12.1-fips:12.1:*:*:*:*:*:*:*
cpe:2.3:a:netscaler:netscaler-adc_12.1-ndcpp:12.1:*:*:*:*:*:*:*
cpe:2.3:a:netscaler:netscaler-adc_13.1-fips:*:*:*:*:*:*:*:*
Vendors & Products Netscaler
Netscaler adc
Netscaler gateway
Netscaler netscaler-adc 12.1-fips
Netscaler netscaler-adc 12.1-ndcpp
Netscaler netscaler-adc 13.1-fips
Metrics cvssV3_1

{'score': 5.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Tue, 12 Nov 2024 18:30:00 +0000

Type Values Removed Values Added
Description Memory safety vulnerability leading to memory corruption and Denial of Service in NetScaler ADC and Gateway if the appliance must be configured as a Gateway (VPN Vserver) with RDP Feature enabled OR the appliance must be configured as a Gateway (VPN Vserver) and RDP Proxy Server Profile is created and set to Gateway (VPN Vserver) OR the appliance must be configured as a Auth Server (AAA Vserver) with RDP Feature enabled
Title Memory safety vulnerability leading to memory corruption and Denial of Service
Weaknesses CWE-119
References
Metrics cvssV4_0

{'score': 8.4, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:H/VA:H/SC:N/SI:N/SA:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Citrix

Published: 2024-11-12T18:15:44.673Z

Updated: 2024-11-21T16:19:44.438Z

Reserved: 2024-09-06T17:18:25.789Z

Link: CVE-2024-8534

cve-icon Vulnrichment

Updated: 2024-11-13T14:38:28.898Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-11-12T19:15:18.907

Modified: 2024-11-21T17:15:26.423

Link: CVE-2024-8534

cve-icon Redhat

No data.