Citrix warns customers to update PuTTY version installed on their XenCenter system manually

Citrix urges customers to manually address a PuTTY SSH client flaw that could allow attackers to steal a XenCenter admin’s private SSH key. Versions of XenCenter for Citrix Hypervisor 8.2 CU1 LTSR used PuTTY, a third-party component, for SSH connections to guest VMs. However, PuTTY inclusion was deprecated with XenCenter version 8.2.6, and any versions […]

address admin attackers breaking news citrix client connections customers flaw hacking hypervisor inclusion information security news it information security key party pierluigi paganini private putty putty ssh security ssh ssh key steal system third third-party update version vms