CVE-2022-27511 Vulnerability Details

  /     /     /  

CVE-2022-27511 Metadata Quick Info

CVE Published: 16/06/2022 | CVE Updated: 17/09/2024 | CVE Year: 2022
Source: Citrix | Vendor: Citrix | Product: Citrix Application Delivery Management (Citrix ADM)
Status : PUBLISHED

---

CVE-2022-27511 Description

Corruption of the system by a remote, unauthenticated user. The impact of this can include the reset of the administrator password at the next device reboot, allowing an attacker with ssh access to connect with the default administrator credentials after the device has rebooted.

Metrics

CVSS Version: 3.1 | Base Score: n/a
Vector: n/a

l➤ Exploitability Metrics:
    Attack Vector (AV)*
    Attack Complexity (AC)*
    Privileges Required (PR)*
    User Interaction (UI)*
    Scope (S)*

l➤ Impact Metrics:
    Confidentiality Impact (C)*
    Integrity Impact (I)*
    Availability Impact (A)*

Weakness Enumeration (CWE)

CWE-ID: CWE-284
CWE Name: CWE-284 Improper Access Control
Source: Citrix

Common Attack Pattern Enumeration and Classification (CAPEC)

CAPEC-ID:
CAPEC Description:


Source: NVD (National Vulnerability Database).