This page lists publicly disclosed CVE vulnerabilities affecting citrix sd-wan_2000_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-2049 | Server-Side Request Forgery (SSRF) in Citrix SD-WAN Standard/Premium Editions on or after 11.4.0 and before 11.4.4.46 allows an attacker to disclose limited information from the appliance via Access to management IP. | [email protected] | 6.5 | 0.37% | 2024-03-12 | 2026-06-17 |
| CVE-2022-27506 | Hard-coded credentials allow administrators to access the shell via the SD-WAN CLI | [email protected] | 2.7 | 0.61% | 2022-04-13 | 2026-06-17 |
| CVE-2022-27505 | Reflected cross site scripting (XSS) | [email protected] | 6.1 | 0.50% | 2022-04-13 | 2026-06-17 |