Citrix публикува актуализации за сигурност за NetScaler ADC и Gateway – 19.07.2023

Citrix has released security updates to address high and critical vulnerabilities (CVE-2023-3519, CVE-2023-3466, and CVE-2023-3467) affecting NetScaler ADC and NetScaler Gateway. An attacker can exploit these vulnerabilities to take control of an affected system. According to Citrix, CVE-2023-3519 is being exploited on unmitigated appliances.

CERT Bulgaria encourages users and administrators to review the Citrix security bulletin and apply the necessary updates.

More information:

https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-201a

https://www.cisa.gov/news-events/alerts/2023/07/20/cisa-releases-cybersecurity-advisory-threat-actors-exploiting-citrix-cve-2023-3519

https://www.bleepingcomputer.com/news/security/over-15k-citrix-servers-vulnerable-to-cve-2023-3519-rce-attacks/