Qualys discovered a critical remote unauthenticated code execution (RCE) vulnerability, CVE-2024-6387, in OpenSSH’s server (sshd). This vulnerability, known as regreSSHion, is a regression of the previously… Article Source https://cybersecuritynews.com/netscaler-adc-gateway-regresshion/
FIN8-linked actor targets Citrix NetScaler systems Pierluigi Paganini August 29, 2023 A financially motivated actor linked to the FIN8 group exploits the CVE-2023-3519 RCE in… Article Source https://securityaffairs.com/150028/cyber-crime/fin8-citrix-netscaler.html
Citrix fixed critical and high-severity bugs in NetScaler product Pierluigi Paganini July 10, 2024 IT giant Citrix addressed multiple vulnerabilities, including critical and… Article Source https://securityaffairs.com/165553/uncategorized/citrix-fixed-netscaler-flaw.html
Citrix warns admins to immediately patch NetScaler for actively exploited zero-days Pierluigi Paganini January 17, 2024 Citrix fixed two actively exploited zero-day vulnerabilities… Article Source https://securityaffairs.com/157611/hacking/citrix-netscaler-zero-days.html
Citrix reminded admins today that they must take additional measures after patching their NetScaler appliances against the CVE-2023-4966 ‘Citrix Bleed’ vulnerability to secure vulnerable devices against attacks. Besides applying the necessary… Article Source https://www.bleepingcomputer.com/news/security/citrix-warns-admins-to-kill-netscaler-user-sessions-to-block-hackers/
Two vulnerabilities in NetScaler’s ADC and Gateway products have been fixed – but not before criminals found and exploited them, according to the vendor. CVE-2023-6548 could allow remote code execution (RCE) in the appliances’ management… Article Source https://www.theregister.com/2024/01/18/citrix_netscaler_bugs_attacked/
In a recent announcement, Citrix revealed that they have addressed a critical vulnerability in their NetScaler console. This vulnerability posed a potential threat to users of the popular networking hardware, allowing unauthorized access to sensitive information. The company moved swiftly to fix the issue, ensuring the safety and security of their customers. The vulnerability was … Read more
Citrix has revealed two critical vulnerabilities in its NetScaler products, posing risks of sensitive data exposure and denial of service attacks. The vulnerabilities identified as CVE-2024-6235 and CVE-2024-6236 have urged Citrix users to update their systems to prevent potential threats. CVE-2024-6235 involves authentication misuse, potentially divulging sensitive information, with a severity score of 9.4. Exploiting … Read more
Citrix has recently fixed critical and high severity vulnerabilities in its NetScaler product. These security updates address issues such as improper authorization, memory buffer limitations, and privilege management flaws that could potentially lead to serious consequences if exploited by attackers. The most serious vulnerability, tracked as CVE-2024-6235, allows attackers with access to the NetScaler console … Read more
Citrix has disclosed two critical vulnerabilities affecting its NetScaler products, including the NetScaler Console, SVM, and Agent. These vulnerabilities, identified as CVE-2024-6235 and CVE-2024-6236, could potentially allow attackers to access sensitive information and launch denial of service (DoS) attacks. The urgency of the situation has led to calls for immediate updates from Citrix to mitigate … Read more