CVE-2022-27516

User login brute force protection functionality bypass
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:-:*:*:*
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:-:*:*:*
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:-:*:*:*
cpe:2.3:h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:fips:*:*:*
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:ndcpp:*:*:*
cpe:2.3:h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*

History

18 Oct 2023, 18:15

Type Values Removed Values Added
Summary User login brute force protection functionality bypass User login brute force protection functionality bypass

09 Nov 2022, 19:29

Type Values Removed Values Added
CWE CWE-307
First Time Citrix
Citrix application Delivery Controller Firmware
Citrix gateway
Citrix application Delivery Controller
References (MISC) https://support.citrix.com/article/CTX463706/citrix-gateway-and-citrix-adc-security-bulletin-for-cve202227510-cve202227513-and-cve202227516 - (MISC) https://support.citrix.com/article/CTX463706/citrix-gateway-and-citrix-adc-security-bulletin-for-cve202227510-cve202227513-and-cve202227516 - Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CPE cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:-:*:*:*
cpe:2.3:h:citrix:application_delivery_controller:-:*:*:*:*:*:*:*
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:fips:*:*:*
cpe:2.3:a:citrix:gateway:*:*:*:*:*:*:*:*
cpe:2.3:o:citrix:application_delivery_controller_firmware:*:*:*:*:ndcpp:*:*:*

08 Nov 2022, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-11-08 22:15

Updated : 2023-12-10 14:35


NVD link : CVE-2022-27516

Mitre link : CVE-2022-27516

CVE.ORG link : CVE-2022-27516


JSON object : View

Products Affected

citrix

  • gateway
  • application_delivery_controller_firmware
  • application_delivery_controller
CWE
CWE-307

Improper Restriction of Excessive Authentication Attempts

CWE-693

Protection Mechanism Failure