NetScaler ADC and Gateway Vulnerable to Denial of Service Attacks
CVE-2024-5491

7.5HIGH

Key Information:

Vendor: Netscaler
Status: Netscaler Adc; Netscaler Gateway
Vendor: CVE Published:; 10 July 2024

What is CVE-2024-5491?

A Denial of Service vulnerability exists in Citrix NetScaler ADC and NetScaler Gateway due to improper input validation. An attacker may exploit this weakness to disrupt service availability, affecting the user experience and potentially leading to operational downtime. Organizations utilizing these products should assess their exposure and implement recommended security measures to mitigate the risk and enhance their systems' resilience.

Affected Version(s)

NetScaler ADC 14.1 < 25.53

NetScaler ADC 13.1 < 53.17

NetScaler ADC 13.0 < 92.31

References

https://support.citrix.com/article/CTX677944/netscaler-ad...

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 10, 2024
Vulnerability Reserved
May 29, 2024

Netscaler

What is CVE-2024-5491?

Affected Version(s)

References

CVSS V3.1

Timeline