CVE-2020-10110

** DISPUTED ** Citrix Gateway 11.1, 12.0, and 12.1 allows Information Exposure Through Caching. NOTE: Citrix disputes this as not a vulnerability. There is no sensitive information disclosure through the cache headers on Citrix ADC. The "Via" header lists cache protocols and recipients between the start and end points for a request or a response. The "Age" header provides the age of the cached response in seconds. Both headers are commonly used for proxy cache and the information is not sensitive.

CVSS v3 5.3 MEDIUM
CVSS v2.0 5.0 MEDIUM

5.3^/10

CVSS v3 : MEDIUM

Vector :

Exploitability : 3.9 / Impact : 1.4

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact LOW

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://packetstormsecurity.com/files/156656/Citrix-Gateway-11.1-12.0-12.1-Information-Disclosure.html	Exploit Third Party Advisory VDB Entry
https://seclists.org/fulldisclosure/2020/Mar/7	Exploit Mailing List Third Party Advisory
https://support.citrix.com/search	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:citrix:gateway_firmware:11.1:::::::*
	cpe:2.3:o:citrix:gateway_firmware:12.0:::::::*
	cpe:2.3:o:citrix:gateway_firmware:12.1:::::::*

History

01 Jan 2022, 18:43

Type	Values Removed	Values Added
References	~~(MISC) http://packetstormsecurity.com/files/156656/Citrix-Gateway-11.1-12.0-12.1-Information-Disclosure.html -~~	(MISC) http://packetstormsecurity.com/files/156656/Citrix-Gateway-11.1-12.0-12.1-Information-Disclosure.html - Exploit, Third Party Advisory, VDB Entry
CWE	~~CWE-668~~	NVD-CWE-noinfo

Information

Published : 2020-03-06 21:15

Updated : 2024-04-11 01:06

NVD link : CVE-2020-10110

Mitre link : CVE-2020-10110

CVE.ORG link : CVE-2020-10110

JSON object : View

Products Affected

citrix

gateway_firmware

CWE

NVD-CWE-noinfo

{"id": "CVE-2020-10110", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 5.3, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2020-03-06T21:15:15.060", "references": [{"url": "http://packetstormsecurity.com/files/156656/Citrix-Gateway-11.1-12.0-12.1-Information-Disclosure.html", "tags": ["Exploit", "Third Party Advisory", "VDB Entry"], "source": "cve@mitre.org"}, {"url": "https://seclists.org/fulldisclosure/2020/Mar/7", "tags": ["Exploit", "Mailing List", "Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "https://support.citrix.com/search", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Citrix Gateway 11.1, 12.0, and 12.1 allows Information Exposure Through Caching. NOTE: Citrix disputes this as not a vulnerability. There is no sensitive information disclosure through the cache headers on Citrix ADC. The \"Via\" header lists cache protocols and recipients between the start and end points for a request or a response. The \"Age\" header provides the age of the cached response in seconds. Both headers are commonly used for proxy cache and the information is not sensitive"}, {"lang": "es", "value": "** EN DISPUTA ** Citrix Gateway 11.1, 12.0 y 12.1 permite la exposici\u00f3n de informaci\u00f3n a trav\u00e9s del almacenamiento en cach\u00e9. NOTA: Citrix discute esto como no una vulnerabilidad. No hay divulgaci\u00f3n de informaci\u00f3n confidencial a trav\u00e9s de los encabezados de cach\u00e9 en Citrix ADC. El encabezado \"V\u00eda\" enumera los protocolos de cach\u00e9 y los destinatarios entre los puntos de inicio y finalizaci\u00f3n para una solicitud o una respuesta. El encabezado \"Edad\" proporciona la edad de la respuesta en cach\u00e9 en segundos. Ambos encabezados se usan com\u00fanmente para la memoria cach\u00e9 de proxy y la informaci\u00f3n no es confidencial."}], "lastModified": "2024-04-11T01:06:32.620", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:citrix:gateway_firmware:11.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7A9E1122-685D-4C6E-9AB1-BEA083C61748"}, {"criteria": "cpe:2.3:o:citrix:gateway_firmware:12.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2F55378F-A72D-4F9D-AC28-58CD31761889"}, {"criteria": "cpe:2.3:o:citrix:gateway_firmware:12.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9A5FEE22-AA5A-4929-A761-90833CC36BB1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}