Attacker Value

Very High

CVE-2020-8196

Attacker Value

Very High

(2 users assessed)

Exploitability

Unknown

(2 users assessed)

User Interaction

CVE-2020-8196

Disclosure Date: July 10, 2020 •

CVE-2020-8196 CVSS v3 Base Score: 4.3

Exploited in the Wild

Reported by gwillcox-r7

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Initial Access

Techniques

Validation

External Remote Services

Validated

Exploit Public-Facing Application

Validated

Common in enterprise

Description

Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.

Add Assessment

elligottmc (17)

October 22, 2020 1:02pm UTC (3 months ago)

Ratings

Attacker Value

Very High

Common in enterprise

Technical Analysis

This is an update based on the assessment provided in the more general topic for the Citrix vulns disclosed in https://support.citrix.com/article/CTX276688 which include this CVE. As API queries to this CVE do not contain this data, reflecting it in this topic.

Link to assessment:
https://attackerkb.com/assessments/50e7e3c5-644c-46ae-b650-1ef45cec22ad

Link to relevant url provided in the assessment:
https://research.nccgroup.com/2020/07/10/rift-citrix-adc-vulnerabilities-cve-2020-8193-cve-2020-8195-and-cve-2020-8196-intelligence/

Additional link which provides a PoC:
https://github.com/Zeop-CyberSec/citrix_adc_netscaler_lfi

It is also included in the Oct 20 NSA Advisory on vulns exploited by Chinese APTs:
https://media.defense.gov/2020/Oct/20/2002519884/-1/-1/0/CSA_CHINESE_EXPLOIT_VULNERABILITIES_UOO179811.PDF

gwillcox-r7 (367)

October 20, 2020 5:54pm UTC (3 months ago)

Technical Analysis

This is now supposedly being exploited in the wild by Chinese state actors according to this NSA announcement: https://media.defense.gov/2020/Oct/20/2002519884/-1/-1/0/CSA_CHINESE_EXPLOIT_VULNERABILITIES_UOO179811.PDF

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

4.3 Medium

Impact Score:

1.4

Exploitability Score:

2.8

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

Low

User Interaction (UI):

None

Scope (S):

Unchanged

Confidentiality (C):

Low

Integrity (I):

None

Availability (A):

None

Products

Citrix ADC, Citrix Gateway, Citrix SDWAN WAN-OP

References

Canonical

CVE-2020-8196 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8196)

Miscellaneous

https://support.citrix.com/article/CTX276688

http://packetstormsecurity.com/files/160047/Citrix-ADC-NetScaler-Local-File-Inclusion.html

Rapid7

Very High

CVE-2020-8196

Very High

Unknown

None

Low

Network

CVE-2020-8196

Description

Add Assessment

Ratings

Technical Analysis

Technical Analysis

CVSS V3 Severity and Metrics

General Information

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Very High

CVE-2020-8196

Very High

Unknown

None

Low

Network

CVE-2020-8196

Description

Add Assessment

Ratings

Technical Analysis

Technical Analysis

CVSS V3 Severity and Metrics

General Information

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification