CVE-2020-8193

CVE-2020-8193

Vendor N/A
Product Citrix ADC, Citrix Gateway, Citrix SDWAN WAN-OP
Weakness CWE-284
KEV Status Known Exploited
Published July 10, 2020
Last update October 21, 2025

CVSS base score

What the vulnerability does

01Description

Improper access control in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 allows unauthenticated access to certain URL endpoints.

CISA mandated remediation

02CISA Required Action

Apply updates per vendor instructions.

Key dates

03Disclosure timeline

July 10, 2020 CVE published
October 21, 2025 Record updated