Vulnerability Details : CVE-2006-4846
Unspecified vulnerability in Citrix Access Gateway with Advanced Access Control (AAC) 4.2 before 20060914, when AAC is configured to use LDAP authentication, allows remote attackers to bypass authentication via unknown vectors.
Exploit prediction scoring system (EPSS) score for CVE-2006-4846
Probability of exploitation activity in the next 30 days: 4.30%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 92 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2006-4846
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
5.1
|
MEDIUM | AV:N/AC:H/Au:N/C:P/I:P/A:P |
4.9
|
6.4
|
NIST |
References for CVE-2006-4846
-
http://support.citrix.com/article/CTX110950
Patch
-
http://www.kb.cert.org/vuls/id/658620
US Government Resource
-
http://securitytracker.com/id?1016874
Patch
-
http://support.citrix.com/article/CTX110439
Patch
-
http://www.vupen.com/english/advisories/2006/3643
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/28990
-
http://www.securityfocus.com/bid/20066
Patch
Products affected by CVE-2006-4846
- cpe:2.3:a:citrix:access_gateway:4.2:*:*:*:*:*:*:*