Citrix ADC and Gateway could allow a remote attacker to bypass security restrictions, caused by a flaw when SAML configuration is not configured to the recommended settings. By utilize phishing attack techniques, an attacker could exploit this vulnerability to hijack a valid user session.
Citrix ADC, Gateway and SD-WAN WANOP are vulnerable to a denial of service, caused by an uncontrolled resource consumption flaw. By sending a specially-crafted request, a remote attacker could exploit this vulnerability to cause a denial of service condition within the same Layer 2 network segment.
Refer to CTX297155 for patch, upgrade or suggested workaround information.