Cornerstone Information Technologies, LLC’s Post

Two vulnerabilities have been discovered in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway).

Two vulnerabilities have been discovered in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway). https://lnkd.in/d-hvD-6Q

Two vulnerabilities have been discovered in NetScaler ADC https://lnkd.in/gC2JVRmq

What a surprise, another CVE affecting NetScaler. 🙄 Two vulnerabilities have been discovered in NetScaler ADC and NetScaler Gateway. All currently supported versions of NetScaler are affected. Anything prior to 13.0 is also affected but not patched. CVE-2023-6548 is an authenticated (low privilege) remote code execution vulnerability in the NetScaler ADC management interface (CVSS score 5.5). CVE-2023-6549 is a Denial of Service with a CVSS score of 8.2. You should patch your NetScaler ADC immediately. CVE-2023-6549 requires your NetScaler ADC to be configured as a gateway (VPN virtual server, ICA proxy, CVPN, RDP proxy) or AAA virtual server. Updates are available! Check the security bulletin for more information. https://lnkd.in/d97TRKYr

Citrix ADC and Gateway vulnerabilities discovered. Find the details below to show the affected releases; https://lnkd.in/edAQsk2S #NetScaler #ADC #Citrix

For Hunt.io, we're doing everything possible to uncover burner infrastructure that is active or planned to be used for an attack. In the following blog post, Michael from our team walks through how we uncovered a new cluster of ShadowPad servers. ShadowPad has been used by Chinese threat actors globally since 2019. To find the new clusters, rather than using default certificates, Michael uses data with in Hunt.io to cluster them. These servers are now added to our C2 feed and fed to our customers. Onto the next cluster of malicious infrastructure...

#NetScaler #NetScalerGateway NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2023-6548 and CVE-2023-6549

Advisory: Active exploitation spotted for new Citrix Netscaler Vulnerabilities https://lnkd.in/gh7SjRRr #Exploit #Vulnerability #citrix #netscaler

#Citrix has issued a warning to its customers about two #zeroday vulnerabilities (CVE-2023-6548 and CVE-2023-6549) that are currently being exploited in the wild affecting Citrix's #Netscaler ADC and Gateway appliances which may expose to remote code execution (#RCE) and denial-of-service (#DOS) attacks. #threatintelligence #vulnerabilitymanagement https://lnkd.in/gTRAeZsj

Discover how NGINX One revolutionizes application delivery, security, and management by unifying them across all environments on a single, scalable platform. Read the latest blog to learn more: http://ms.spr.ly/6048cQYf2 #NGINX #applications #security #F5