CyberSecurity Alert—Citrix Releases Security Updates for NetScaler ADC and NetScaler Gateway - 5ironCyber

January 21, 2024

Threat Level: Critical

Threat: Citrix Releases Security Updates for NetScaler ADC and NetScaler Gateway

SUMMARY

Citrix has released security updates to address vulnerabilities in NetScaler ADC and NetScaler Gateway. If left unpatched, a threat actor could exploit one of these vulnerabilities to take control of an affected system

The vulnerabilities—CVE-2023-6548 and CVE-2023-6549—only apply to customer-managed NetScaler ADC and NetScaler Gateway products. Citrix recommends reviewing the Citrix CTX584986 Security Bulletin and applying the necessary updates.

SEVERITY

5ironCyber considers this a Critical Alert and recommends updating the affected systems as soon as possible.

RECOMMENDATION

Review the Citrix CTX584986 Security Bulletin
Apply the necessary updates. SOURCES
https://www.cisa.gov/news-events/alerts/2024/01/18/citrix-releases-security-updates-netscaler- adc-and-netscaler-gateway
Citrix CTX584986 Security Bulletin—https://support.citrix.com/article/CTX584986/netscaler- adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549
https://www.cve.org/CVERecord?id=CVE-2023-6548 •

SUMMARY

SEVERITY

RECOMMENDATION

SHARE THIS