CVE-2020-8195

CVE-2020-8195

Vendor N/A

Product Citrix ADC, Citrix Gateway, Citrix SDWAN WAN-OP

Weakness CWE-20 · Input validation

KEV Status Known Exploited

Published July 10, 2020

Last update October 21, 2025

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Improper input validation in Citrix ADC and Citrix Gateway versions before 13.0-58.30, 12.1-57.18, 12.0-63.21, 11.1-64.14 and 10.5-70.18 and Citrix SDWAN WAN-OP versions before 11.1.1a, 11.0.3d and 10.2.7 resulting in limited information disclosure to low privileged users.

CISA mandated remediation

02CISA Required Action

Apply updates per vendor instructions.

Key dates

03Disclosure timeline

July 10, 2020 CVE published

October 21, 2025 Record updated

External resources

04References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2020-8195 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html CISA KEV Reference https://nvd.nist.gov/vuln/detail/CVE-2020-8195

Related vulnerabilities

Identifiers

CVE CVE-2020-8195

CWE CWE-20

Affected versions