{ "schema_version": "1.4.0", "id": "GHSA-jjcm-f6q3-w5xj", "modified": "2025-02-04T21:32:19Z", "published": "2022-05-24T17:05:09Z", "aliases": [ "CVE-2019-19781" ], "details": "An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.", "severity": [ { "type": "CVSS_V3", "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H" } ], "affected": [], "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-19781" }, { "type": "WEB", "url": "https://badpackets.net/over-25000-citrix-netscaler-endpoints-vulnerable-to-cve-2019-19781" }, { "type": "WEB", "url": "https://forms.gle/eDf3DXZAv96oosfj6" }, { "type": "WEB", "url": "https://support.citrix.com/article/CTX267027" }, { "type": "WEB", "url": "https://twitter.com/bad_packets/status/1215431625766424576" }, { "type": "WEB", "url": "https://www.kb.cert.org/vuls/id/619785" }, { "type": "WEB", "url": "http://packetstormsecurity.com/files/155904/Citrix-Application-Delivery-Controller-Gateway-Remote-Code-Execution.html" }, { "type": "WEB", "url": "http://packetstormsecurity.com/files/155905/Citrix-Application-Delivery-Controller-Gateway-Remote-Code-Execution-Traversal.html" }, { "type": "WEB", "url": "http://packetstormsecurity.com/files/155930/Citrix-Application-Delivery-Controller-Gateway-10.5-Remote-Code-Execution.html" }, { "type": "WEB", "url": "http://packetstormsecurity.com/files/155947/Citrix-ADC-NetScaler-Directory-Traversal-Remote-Code-Execution.html" }, { "type": "WEB", "url": "http://packetstormsecurity.com/files/155972/Citrix-ADC-Gateway-Path-Traversal.html" } ], "database_specific": { "cwe_ids": [ "CWE-22" ], "severity": "HIGH", "github_reviewed": false, "github_reviewed_at": null, "nvd_published_at": "2019-12-27T14:15:00Z" } }