NVD

Id
49475  
Name
CVE-2009-2213  
Description
The default configuration of the Security global settings on the Citrix NetScaler Access Gateway appliance with Enterprise Edition firmware 9.0, 8.1, and earlier specifies Allow for the Default Authorization Action option, which might allow remote authenticated users to bypass intended access restrictions.  
Reject
 
CVSS Version
2  
CVSS Score
6.3  
Severity
Medium  
CVSS Base Score
6.3  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:C/I:N/A:N)  
Pub Date
2017-01-07  
Published
2009-06-25  
Modified Date
2013-04-30  
Seq
2009-2213  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
250258 49475 CVE-2009-2213 http://support.citrix.com/article/CTX118770  View
250259 49475 CVE-2009-2213 35422  View
250260 49475 CVE-2009-2213 ADV-2009-1641  View
250261 49475 CVE-2009-2213 netscaler-default-unauth-access(51274)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
42542 JVNDB-2009-003549 Citrix NetScaler Access Gateway アプライアンスの Security グローバル設定のデフォルト設定におけるアクセス制限を回避される脆弱性 Citrix NetScaler Access Gateway アプライアンスの Security グローバル設定のデフォルト設定は、デフォルトの認証アクションオプションで許可を指定するため、アクセス制限を回避される脆弱性が存在します。 CVE-2009-2213 39644 CVE-2009-2213 49475 3.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-003549.html 2009-05-05 2012-06-26 View