Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
Web Application Vulnerabilities Runtime SCA Findings
Looking for the vulnerability index of Invicti's legacy products?
Invicti Enterprise Acunetix Standard & Premium
Citrix ADC NetScaler Local File Inclusion (CVE-2020-8193) - Vulnerability Database

Citrix ADC NetScaler Local File Inclusion (CVE-2020-8193)

Description

Invicti determined that it was possible to access Citrix ADC NetScaler's sensitive files without authentication.

Remediation

Upgrade to the latest version of Citrix NetScaler

References

Adventures in Citrix security research
Citrix Application Delivery Controller, Citrix Gateway, and Citrix SD-WAN WANOP appliance Security Update

Related Vulnerabilities

Citrix NetScaler Memory Disclosure 'Citrix Bleed' (CVE-2023-4966) Critical
Common tags: Information Disclosure Missing Update Known Vulnerabilities
Citrix NetScaler Memory Disclosure 'Citrix Bleed 2' (CVE-2025-5777) Critical
Common tags: Information Disclosure Missing Update Known Vulnerabilities
WebLogic CVE-2021-2135 Vulnerability (CVE-2021-2135) Critical
Common tags: Missing Update Known Vulnerabilities
Magento Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2019-7926) Medium
Common tags: Missing Update Known Vulnerabilities
Magento CVE-2019-7904 Vulnerability (CVE-2019-7904) Medium
Common tags: Missing Update Known Vulnerabilities

Severity

Medium

Classification

CVE-2020-8193
CWE-284
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Tags

Information Disclosure
Missing Update
Known Vulnerabilities