Every CVE whose affected-product data names Citrix Access Gateway, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2008-2528 — CVSS 10.0 (critical): Unspecified vulnerability in Citrix Access Gateway Standard Edition 4.5.7 and earlier and Advanced Edition 4.5 HF2 and earlier allows…
CVE-2011-2883 — CVSS 9.3 (critical): The NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 before 8.1-67.7, 9.0 before 9.0-70.5…
CVE-2011-2882 — CVSS 9.3 (critical): Stack-based buffer overflow in the NSEPA.NsepaCtrl.1 ActiveX control in nsepa.ocx in Citrix Access Gateway Enterprise Edition 8.1 before…
CVE-2010-4566 — CVSS 9.3 (critical): The web authentication form in the NT4 authentication component in Citrix Access Gateway Enterprise Edition 9.2-49.8 and earlier, and the…
CVE-2007-4017 — CVSS 7.6 (high): Cross-site request forgery (CSRF) vulnerability in the web-based administration console in Citrix Access Gateway before firmware 4.5.5…
CVE-2007-4016 — CVSS 6.8 (medium): Unspecified vulnerability in the client components in Citrix Access Gateway Standard Edition before 4.5.5 and Advanced Edition before 4.5…
CVE-2007-4018 — CVSS 6.8 (medium): Citrix Access Gateway Advanced Edition before firmware 4.5.5 allows attackers to redirect users to arbitrary web sites and conduct phishing…
CVE-2006-6572 — CVSS 6.5 (medium): Unspecified vulnerability in Citrix Advanced Access Control (AAC) Option 4.0, and Access Gateway 4.2 with Advanced Access Control 4.2…
CVE-2006-6573 — CVSS 6.0 (medium): Unspecified vulnerability in Citrix Access Gateway 4.5 Advanced Edition, and 4.2 with Advanced Access Control (AAC) 4.2, when deployed on…
CVE-2006-4846 — CVSS 5.1 (medium): Unspecified vulnerability in Citrix Access Gateway with Advanced Access Control (AAC) 4.2 before 20060914, when AAC is configured to use…
CVE-2007-0011 — CVSS 5.0 (medium): The web portal interface in Citrix Access Gateway (aka Citrix Advanced Access Control) before Advanced Edition 4.5 HF1 places a session ID…
CVE-2013-2263 — CVSS 5.0 (medium): Unspecified vulnerability in Citrix Access Gateway Standard Edition 5.0.x before 5.0.4.223524 allows remote attackers to access network…
CVE-2007-3679 — CVSS 4.3 (medium): The Citrix EPA ActiveX control (aka the "endpoint checking control" or CCAOControl Object) before 4.5.0.0 in npCtxCAO.dll in Citrix Access…