CVE-2024-2049

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Mar 12, 2024
CWE ID 918

Summary

CVE-2024-2049 is a vulnerability categorized as Server-Side Request Forgery (SSRF) in Citrix SD-WAN Standard/Premium Editions versions 11.4.0 to 11.4.4.46, allowing an attacker to gain limited information from the appliance through access to the management IP address. The risk score for this vulnerability is 26, with a base severity of MEDIUM and a base score of 6.5. The exploitability score is 3.9, indicating that it can be exploited relatively easily. The impact of this vulnerability is low in terms of integrity and confidentiality, with no availability impact. Remediation for this vulnerability has not been specified in the provided information, but organizations using affected versions should seek guidance from secure@citrix.com for mitigation steps to prevent potential exploitation and data disclosure.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2024-2049 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options