S4E

CVE-2019-12987 Scanner

Detects 'Remote Code Execution (RCE)' vulnerability in Citrix SD-WAN Center affects v. 10.2.x before 10.2.3.

Short Info


Level

Critical

Single Scan

Single Scan

Can be used by

Asset Owner

Estimated Time

10 seconds

Time Interval

4 weeks

Scan only one

Domain, IPv4

Toolbox

-

Citrix SD-WAN Center is a centralized platform used for managing software-defined wide area network (SD-WAN) architecture. It allows administrators to monitor and control the performance of network connections, applications, and devices across the organization. The primary purpose of this platform is to enhance the network's performance, reduce downtime, and increase user productivity.

Recently, a vulnerability identified as CVE-2019-12987 was detected in Citrix SD-WAN 10.2.x and NetScaler SD-WAN 10.0.x. This vulnerability occurs due to improper input validation of user-supplied parameters, which enables attackers to execute arbitrary code with elevated privileges.

Exploiting CVE-2019-12987 can lead to serious consequences for organizations using Citrix SD-WAN Center. An attacker can gain access to sensitive data transmitted through the network, perform unauthorized actions, launch attacks against other devices, and disrupt business operations. The vulnerability can also facilitate remote code execution and a complete takeover of the vulnerable system.

Thanks to the pro features of the s4e.io platform, those who read this article can easily and quickly learn about vulnerabilities in their digital assets. The platform provides up-to-date information on vulnerabilities, exploits, and patches for various software and devices. It also offers vulnerability scanning and analysis tools, risk assessment reports, and customized alerts. By using this platform, organizations can proactively improve their security posture and enhance their resilience against cyber threats.

 

REFERENCES

Get started to protecting your Free Full Security Scan