Every CVE whose affected-product data names Citrix Nfuse, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2002-0504 — CVSS 7.5 (high): Cross-site scripting vulnerability in Citrix NFuse 1.6 and earlier does not quote results from the getLastError method, which allows remote…
CVE-2001-0760 — CVSS 5.0 (medium): Citrix Nfuse 1.51 allows remote attackers to obtain the absolute path of the web root via a malformed request to launch.asp that does not…
CVE-2002-0301 — CVSS 5.0 (medium): Citrix NFuse 1.6 allows remote attackers to bypass authentication and obtain sensitive information by directly calling launch.asp with…
CVE-2002-0502 — CVSS 5.0 (medium): Citrix NFuse 1.6 may allow remote attackers to list applications without authentication by accessing the applist.asp page.
CVE-2002-0503 — CVSS 5.0 (medium): Directory traversal vulnerability in boilerplate.asp for Citrix NFuse 1.5 allows remote authenticated users to read arbitrary files via a…
CVE-2005-3971 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the login form in Citrix MetaFrame Secure Access Manager 2.0 through 2.2 and NFuse Elite 1.0…