Attacker Value

Low

(1 user assessed)

Exploitability

High

(1 user assessed)

User Interaction

CVE-2023-24488

Disclosure Date: July 10, 2023 •

CVE-2023-24488 CVSS v3 Base Score: 6.1

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Cross site scripting vulnerability in Citrix ADC and Citrix Gateway  in allows and attacker to perform cross site scripting

Add Assessment

cbeek-r7 (173)

July 04, 2023 9:56am UTC (1 year ago)

Ratings

Attacker Value

Low

Exploitability

High

Easy to weaponize

Technical Analysis

Summary:
A Cross-Site Scripting vulnerability has been discovered in Citrix ADC and Citrix Gateway versionslisted below.

Insufficient sanitization of URL query parameters before their inclusion in an HTTP Location header poses a security risk. Exploiting this vulnerability allows an attacker to create a manipulated link that, upon being clicked, redirects the victim to an arbitrary destination. Additionally, the attacker can insert newline characters into the Location header, prematurely terminating the HTTP headers and injecting an XSS payload into the response body.

Impact of vulnerability:
An attacker can leverage this vulnerability to construct malicious links that, when clicked, either redirect the victim to a website under the attacker’s control or execute JavaScript code within the victim’s browser.

Affected Software:
The following versions of Citrix ADC and Citrix Gateway are susceptible to this vulnerability:

Citrix ADC and Citrix Gateway 13.1 before 13.1-45.61
Citrix ADC and Citrix Gateway 13.0 before 13.0-90.11
Citrix ADC and Citrix Gateway 12.1 before 12.1-65.35
Citrix ADC 12.1-FIPS before 12.1-55.296
Citrix ADC 12.1-NDcPP before 12.1-55.296

Mitigation:
Follow the Citrix reference link to update to the latest versions that will fix the issue(s).

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

6.1 Medium

Impact Score:

2.7

Exploitability Score:

2.8

Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Attack Vector (AV):

Network

Attack Complexity (AC):

Low

Privileges Required (PR):

None

User Interaction (UI):

Required

Scope (S):

Changed

Confidentiality (C):

Low

Integrity (I):

Low

Availability (A):

None

Vendors

citrix

Products

application delivery controller,
gateway

References

Canonical

CVE-2023-24488 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-24488)

Exploit

PoCs that have not been added by contributors directly have been sourced from: nomi-sec/PoC-in-GitHub.
A PoC added here by the AKB Worker must have at least 2 GitHub stars.

PoC (https://github.com/k00kx/nuclei-templates/blob/master/CVE-2023-24488.yaml)

CVE-2023-24488-PoC (https://github.com/SirBugs/CVE-2023-24488-PoC) (Added by AKB Worker)

CVE-2023-24488 (https://github.com/Abo5/CVE-2023-24488) (Added by AKB Worker)

CVE-2023-24488 (https://github.com/securitycipher/CVE-2023-24488) (Added by AKB Worker)

Mitigation

Citrix Mitigation Instructions (https://support.citrix.com/article/CTX477714/citrix-adc-and-citrix-gateway-security-bulletin-for-cve202324487-cve202324488)

Rapid7

Low

CVE-2023-24488

Low

High

Required

None

Network

CVE-2023-24488

Description

Add Assessment

Ratings

Technical Analysis

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Exploit

Mitigation

Additional Info

Technical Analysis

Low

CVE-2023-24488

Low

High

Required

None

Network

CVE-2023-24488

Description

Add Assessment

Ratings

Technical Analysis

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Exploit

Mitigation

Additional Info

Technical Analysis

Quick Cookie Notification