Citrix has released security updates to address high and critical vulnerabilities (CVE-2023-3519, CVE-2023-3466, and CVE-2023-3467) affecting NetScaler ADC and NetScaler Gateway. An attacker can exploit these vulnerabilities to take control of an affected system. According to Citrix, CVE-2023-3519 is being exploited on unmitigated appliances.
CERT Bulgaria encourages users and administrators to review the Citrix security bulletin and apply the necessary updates.
More information:
https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-201a