CVE-2019-17366

Citrix Application Delivery Management (ADM) 12.1 before build 54.13 has Incorrect Access Control.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 66%
VendorProductVersion
citrixapplication_delivery_management
12.1:build_48.18
citrixapplication_delivery_management
12.1:build_49.23
citrixapplication_delivery_management
12.1:build_49.37
citrixapplication_delivery_management
12.1:build_50.28
citrixapplication_delivery_management
12.1:build_50.30
citrixapplication_delivery_management
12.1:build_50.33
citrixapplication_delivery_management
12.1:build_50.39
citrixapplication_delivery_management
12.1:build_50.43
citrixapplication_delivery_management
12.1:build_52.15
citrixapplication_delivery_management
12.1:build_53.12
citrixapplication_delivery_management
13.0
𝑥
= Vulnerable software versions
References
https://support.citrix.com/article/CTX261735
https://support.citrix.com/article/CTX261735