Denial of service
CVE-2023-4967

8.2HIGH

Key Information:

Vendor: Cloud Software Group
Status: Netscaler Adc; Netscaler Gateway
Vendor: CVE Published:; 27 October 2023

🔔 Create Cloud Software Group Vulnerability Alert

What is CVE-2023-4967?

A Denial of Service vulnerability has been identified in Citrix's NetScaler ADC and NetScaler Gateway, particularly when these products are configured as Gateway services such as VPN virtual servers, ICA Proxy, CVPN, RDP Proxy, or as AAA Virtual Servers. This vulnerability can potentially disrupt normal service operations, affecting users' access to critical network resources.

Affected Version(s)

NetScaler ADC 14.1 < 8.50

NetScaler ADC 13.1 < 49.15

NetScaler ADC 13.0 < 92.19

References

https://support.citrix.com/article/CTX579459/

CVSS V3.1

Score:

8.2

Severity:

HIGH

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 27, 2023
Vulnerability Reserved
Sep 14, 2023