CVE-2020-8193

Description

Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows unauthenticated access to certain URL endpoints.

NVD
Severity: MEDIUM
CVE ID: CVE-2020-8193
CVSS Score: 6.5
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Refrence: NVD MITRE

Proof Of Concept

Nuclei Templates for CVE-2020-8193

Refrence: Project Discovery GitHub

jas502n

Citrix ADC Vulns

Refrence: GitHub

Airboi

Citrix ADC从权限绕过到RCE

Refrence: GitHub

Zeop-CyberSec

This Metasploit-Framework module can be use to help companies to check the last Citrix vulnerability CVE-2020-8193, CVE-2020-8195 and CVE-2020-8196 (disclosed July 08, 2020).

Refrence: GitHub

PR3R00T

Scanning for CVE-2020-8193 - Auth Bypass check

Refrence: GitHub

ctlyz123

Refrence: GitHub

Description​

Proof Of Concept​

Description

Proof Of Concept