Sensitive Information Disclosure in NetScaler ADC and NetScaler Gateway
Key Information
- Vendor
- Citrix
- Status
- NetScaler ADC
- NetScaler Gateway
- Vendor
- CVE Published:
- 10 October 2023
Badges
Summary
Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA ?virtual?server.
CISA Reported
CISA provides regional cyber and physical services to support security and resilience across the United States. CISA monitor the most dangerious vulnerabilities and have identifed CVE-2023-4966 as being exploited and is known by the CISA as enabling ransomware campaigns.
The CISA's recommendation is: Apply mitigations and kill all active and persistent sessions per vendor instructions [https://www.netscaler.com/blog/news/cve-2023-4966-critical-security-update-now-available-for-netscaler-adc-and-netscaler-gateway/] OR discontinue use of the product if mitigations are unavailable.
Affected Version(s)
NetScaler ADC < 8.50
NetScaler ADC < 49.15
NetScaler ADC < 92.19
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
News Articles
Threat Brief: Citrix Bleed CVE-2023-4966
Threat brief on CVE-2023-4966 (aka Citrix Bleed) affecting multiple Netscaler products covers attack scope, threat hunting queries and interim guidance.
5 months ago
Citrix Discovers Two Vulnerabilities, Both Exploited in the Wild
These vulnerabilities are the second and third for Citrix but are not expected to be as detrimental as "CitrixBleed."
9 months ago
Comcast Xfinity Breached via CitrixBleed; 35M Customers Affected
A trove of personal data belonging to millions of Americans is just the latest bullet point in a bad year for Citrix customers.
10 months ago
EPSS Score
97% chance of being exploited in the next 30 days.
CVSS V3.1
Timeline
First article discovered by The Cyber Express
- 👾
Exploit exists.
Vulnerability published.
Vulnerability Reserved.