1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. Citrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability

Known Exploited Vulnerabilities CVE-2019-19781 Mappings

An issue was discovered in Citrix Application Delivery Controller (ADC) and Gateway 10.5, 11.1, 12.0, 12.1, and 13.0. They allow Directory Traversal.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2019-19781 Citrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability secondary_impact T1083 File and Directory Discovery
Comments
CVE-2019-19781 is exploited through directory traversal, allowing an unauthenticated attacker to execute arbitrary code on affected Citrix Netscaler Application Delivery Control (ADC).
References
  1. https://www.ic3.gov/CSA/2021/210426.pdf
  2. https://www.cisa.gov/news-events/cybersecurity-advisories/aa21-209a
CVE-2019-19781 Citrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability primary_impact T1059 Command and Scripting Interpreter
Comments
CVE-2019-19781 is exploited through directory traversal, allowing an unauthenticated attacker to execute arbitrary code on affected Citrix Netscaler Application Delivery Control (ADC).
References
  1. https://www.ic3.gov/CSA/2021/210426.pdf
  2. https://www.cisa.gov/news-events/cybersecurity-advisories/aa21-209a
CVE-2019-19781 Citrix ADC, Gateway, and SD-WAN WANOP Appliance Code Execution Vulnerability exploitation_technique T1133 External Remote Services
Comments
CVE-2019-19781 is exploited through directory traversal, allowing an unauthenticated attacker to execute arbitrary code on affected Citrix Netscaler Application Delivery Control (ADC).
References
  1. https://www.ic3.gov/CSA/2021/210426.pdf
  2. https://www.cisa.gov/news-events/cybersecurity-advisories/aa21-209a