1. Home
  2. CVE Database
  3. CVE-2022-27505
MEDIUM · 6.1

CVE-2022-27505

Reflected cross site scripting (XSS)

Vulnerability Description

Reflected cross site scripting (XSS)

CVSS Score

6.1

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
CHANGED
Confidentiality
LOW
Integrity
LOW
Availability
NONE

Affected Products

VendorProductVersions
CitrixSd-Wan 110 Firmware< 11.4.3a
CitrixSd-Wan 110-
CitrixSd-Wan 210 Firmware< 11.4.3a
CitrixSd-Wan 210-
CitrixSd-Wan 400 Firmware< 11.4.3a
CitrixSd-Wan 400-
CitrixSd-Wan 410 Firmware< 11.4.3a
CitrixSd-Wan 410-
CitrixSd-Wan 1000 Firmware< 11.4.3a
CitrixSd-Wan 1000-
CitrixSd-Wan 2000 Firmware< 11.4.3a
CitrixSd-Wan 2000-
CitrixSd-Wan 2100 Firmware< 11.4.3a
CitrixSd-Wan 2100-
CitrixSd-Wan 4000 Firmware< 11.4.3a
CitrixSd-Wan 4000-
CitrixSd-Wan 4100 Firmware< 11.4.3a
CitrixSd-Wan 4100-
CitrixSd-Wan 5100 Firmware< 11.4.3a
CitrixSd-Wan 5100-

Related Weaknesses (CWE)

CWE-79

References

FAQ

What is CVE-2022-27505?

CVE-2022-27505 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Reflected cross site scripting (XSS)

How severe is CVE-2022-27505?

CVE-2022-27505 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-27505?

Check the references section above for vendor advisories and patch information. Affected products include: Citrix Sd-Wan 110 Firmware, Citrix Sd-Wan 110, Citrix Sd-Wan 210 Firmware, Citrix Sd-Wan 210, Citrix Sd-Wan 400 Firmware.