Strix
26.1K

CVE-2018-6808

UnknownEPSS 2.47%

Last modified

CVE-2018-6808 is a vulnerability of currently unknown severity. NetScaler ADC 10.5, 11.0, 11.1, and 12.0, and NetScaler Gateway 10.5, 11.0, 11.1, and 12.0 allow remote attackers to download arbitrary files on the target system.. EPSS estimates a 2.47% chance of exploitation in the next 30 days.

Description

NetScaler ADC 10.5, 11.0, 11.1, and 12.0, and NetScaler Gateway 10.5, 11.0, 11.1, and 12.0 allow remote attackers to download arbitrary files on the target system.

Metrics

EPSS Probability
2.47%

82.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CitrixNetscaler Application Delivery Controller Firmware10.5
CitrixNetscaler Application Delivery Controller Firmware11.0
CitrixNetscaler Application Delivery Controller Firmware11.1
CitrixNetscaler Application Delivery Controller Firmware12.0
CitrixNetscaler Gateway Firmware10.5
CitrixNetscaler Gateway Firmware11.0
CitrixNetscaler Gateway Firmware11.1
CitrixNetscaler Gateway Firmware12.0

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2018-6808?
NetScaler ADC 10.5, 11.0, 11.1, and 12.0, and NetScaler Gateway 10.5, 11.0, 11.1, and 12.0 allow remote attackers to download arbitrary files on the target system.
How severe is CVE-2018-6808?
Severity scoring for CVE-2018-6808 is pending analysis. The EPSS model estimates a 2.47% probability of exploitation in the next 30 days.
How do I fix CVE-2018-6808?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2018-6808?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST