CVE-2021-22920: 
NixOS vulnerability analysis and mitigation

A vulnerability (CVE-2021-22920) was discovered in Citrix ADC (formerly known as NetScaler ADC), Citrix Gateway (formerly known as NetScaler Gateway), and Citrix SD-WAN WANOP Edition models 4000-WO, 4100-WO, 5000-WO, and 5100-WO. The vulnerability was disclosed in July 2021 and relates to SAML authentication hijacking that could potentially lead to user session theft through phishing attacks (MITRE CVE, NVD).

The vulnerability has been assigned a CVSS v3.1 Base Score of 6.5 (Medium) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N, indicating that it can be exploited over the network, requires low attack complexity, needs no privileges, but does require user interaction. The vulnerability is classified under CWE-284 (Improper Access Control) (NVD).

If successfully exploited, this vulnerability could allow attackers to perform phishing attacks through SAML authentication hijacking, potentially leading to the theft of valid user sessions. This could compromise the confidentiality of user data and potentially lead to unauthorized access to protected resources (MITRE CVE).

Citrix has released security updates to address this vulnerability. Affected organizations should upgrade to the patched versions of the software as specified in the vendor's security advisory (Citrix Advisory).