CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!

CVE-2024-12284: Authenticated privilege escalation

8.8 CVSS

Description

Authenticated privilege escalation in NetScaler Console and NetScaler Agent allows.

CVSS Base Severity: HIGH

CVSS Base Score: 8.8

CVSS Vector: CVSS:4.0/AV:A/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

Vendor: NetScaler

Product: Console

EPSS Score: 0.02% (probability of being exploited)

EPSS Percentile: 2.05% (scored less or equal to compared to others)

EPSS Date: 2025-03-20 (when was this score calculated)

2025-02-20 00:31:05 UTC
CVE

Authenticated privilege escalation
2025-02-20 05:15:23 UTC
TheHackerNews

Citrix Releases Security Fix for NetScaler Console Privilege Escalation Vulnerability