CVE-2024-12284

Authenticated privilege escalation inNetScaler Console and NetScaler Agent allows.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.8 HIGH
NETWORK
LOW
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CitrixCNA
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 30%
VendorProductVersion
citrixnetscaler_agent
13.1-4.43 ≤
𝑥
< 13.1-56.18
citrixnetscaler_agent
14.1-4.42 ≤
𝑥
< 14.1-38.53
citrixnetscaler_agent
13.0-58.30
citrixnetscaler_console
13.1:build12.50
citrixnetscaler_console
13.1:build17.42
citrixnetscaler_console
13.1:build21.53
citrixnetscaler_console
13.1:build24.38
citrixnetscaler_console
13.1:build27.62
citrixnetscaler_console
13.1:build30.52
citrixnetscaler_console
13.1:build33.50
citrixnetscaler_console
13.1:build37.38
citrixnetscaler_console
13.1:build4.43
citrixnetscaler_console
13.1:build42.47
citrixnetscaler_console
13.1:build45.61
citrixnetscaler_console
13.1:build48.47
citrixnetscaler_console
13.1:build49.13
citrixnetscaler_console
13.1:build50.23
citrixnetscaler_console
13.1:build51.14
citrixnetscaler_console
13.1:build52.19
citrixnetscaler_console
13.1:build53.22
citrixnetscaler_console
13.1:build53.24
citrixnetscaler_console
13.1:build54.29
citrixnetscaler_console
13.1:build55.29
citrixnetscaler_console
14.1:build12.34
citrixnetscaler_console
14.1:build17.38
citrixnetscaler_console
14.1:build21.60
citrixnetscaler_console
14.1:build25.53
citrixnetscaler_console
14.1:build25.56
citrixnetscaler_console
14.1:build29.63
citrixnetscaler_console
14.1:build34.43
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://support.citrix.com/s/article/CTX692579-netscaler-console-and-netscaler-agent-security-bulletin-for-cve202412284?language=en_US