Skip to main content

Sd Wan 4100 Firmware

3 CVEs product

Monthly

CVE-2024-2049 MEDIUM This Month

Server-Side Request Forgery (SSRF) in Citrix SD-WAN Standard/Premium Editions on or after 11.4.0 and before 11.4.4.46 allows an attacker to disclose limited information from the appliance via Access. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF Citrix Sd Wan 1000 Firmware Sd Wan 110 Firmware Sd Wan 1100 Firmware +9
NVD
CVSS 3.1
5.3
EPSS
0.4%
CVE-2022-27506 LOW Monitor

Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Sd Wan 110 Firmware Sd Wan 210 Firmware Sd Wan 400 Firmware Sd Wan 410 Firmware +10
NVD
CVSS 3.1
2.7
EPSS
0.6%
CVE-2022-27505 MEDIUM This Month

Reflected cross site scripting (XSS). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Sd Wan 110 Firmware Sd Wan 210 Firmware Sd Wan 400 Firmware Sd Wan 410 Firmware +8
NVD
CVSS 3.1
6.1
EPSS
0.5%
EPSS 0% CVSS 5.3
MEDIUM This Month

Server-Side Request Forgery (SSRF) in Citrix SD-WAN Standard/Premium Editions on or after 11.4.0 and before 11.4.4.46 allows an attacker to disclose limited information from the appliance via Access. Rated medium severity (CVSS 5.3), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

SSRF Citrix Sd Wan 1000 Firmware +11
NVD
EPSS 1% CVSS 2.7
LOW Monitor

Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI. Rated low severity (CVSS 2.7), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Authentication Bypass Sd Wan 110 Firmware Sd Wan 210 Firmware +12
NVD
EPSS 1% CVSS 6.1
MEDIUM This Month

Reflected cross site scripting (XSS). Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Sd Wan 110 Firmware Sd Wan 210 Firmware +10
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy