Security Advisory

CVE-2017-6316

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-07-20 04:00:00

Last updated 2025-10-21 23:55:36

Assigner mitre

State PUBLISHED

Description

Citrix NetScaler SD-WAN devices through v9.1.2.26.561201 allow remote attackers to execute arbitrary shell commands as root via a CGISESSID cookie. On CloudBridge (the former name of NetScaler SD-WAN) devices, the cookie name was CAKEPHP rather than CGISESSID.

← Browse all CVEs View on cve.org ↗