CVE-2024-2049

Published: Mar 12, 2024Modified: Jul 25, 2025

5.3

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Exploitability: 3.9 / Impact: 1.4

Source: NVD

Description

Server-Side Request Forgery (SSRF) in Citrix SD-WAN Standard/Premium Editions on or after 11.4.0 and before 11.4.4.46 allows an attacker to disclose limited information from the appliance via Access to management IP.

Affected (18)

Products: Citrix: Sd Wan 1000 Firmware, Sd Wan 110 Firmware, Sd Wan 1100 Firmware, Sd Wan 2000 Firmware, Sd Wan 210 Firmware, Sd Wan 2100 Firmware, Sd Wan 400 Firmware, Sd Wan 4000 Firmware, Sd Wan 410 Firmware, Sd Wan 4100 Firmware, Sd Wan 5100 Firmware, Sd Wan 6100 Firmware

12 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 1000 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 1000	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 110 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 110	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 1100 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 1100	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 2000 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 2000	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 210 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 210	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 2100 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 2100	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 400 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 400	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 4000 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 4000	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 410 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 410	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 4100 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 4100	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 5100 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 5100	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 6100 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 6100	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 1000 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 1000	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 1100 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 1100	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 2000 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 2000	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 2100 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 2100	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 6100 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 6100	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Citrix Sd Wan 5100 Firmware	From 11.4.0 to 11.4.4.46

Running on/with	Platform Versions
Citrix Sd Wan 5100	All versions

Related CWEs

CWE-918

Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

References (3)

https://support.citrix.com/article/CTX617071/citrix-sdwan-security-bulletin-for-cve20242049

Source: secure@citrix.com

Broken Link

https://support.citrix.com/external/article?articleUrl=CTX617071-citrix-sdwan-security-bulletin-for-cve20242049&language=en_US

Source: nvd@nist.gov

Vendor Advisory

https://support.citrix.com/article/CTX617071/citrix-sdwan-security-bulletin-for-cve20242049

Source: af854a3a-2127-422b-91ae-364da2661108

Broken Link

Timeline

No history available yet.