all InfoSec news
CVE-2023-6548, CVE-2023-6549: Zero-Day Vulnerabilities Exploited in Citrix NetScaler ADC and NetScaler Gateway
Cyber Exposure Alerts www.tenable.com
Two zero-day vulnerabilities in Citrix NetScaler ADC and NetScaler Gateway have been exploited in the wild. Urgent patching is required to address these flaws.
Background
On January 16, Citrix published an advisory for two new zero-day vulnerabilities in its NetScaler Application Delivery Controller (ADC) and NetScaler Gateway appliances:
| CVE | Description | Severity |
|---|---|---|
| CVE-2023-6548 | Citrix NetScaler ADC and Gateway Authenticated Remote Code Execution (RCE) Vulnerability | Medium |
| CVE-2023-6549 | Citrix NetScaler ADC and Gateway Denial of Service Vulnerability | High |
According to Citrix, these flaws …
adc address advisory application application delivery application delivery controller citrix citrix netscaler citrix netscaler adc controller cve delivery exploited flaws gateway january netscaler netscaler adc netscaler gateway patching urgent vulnerabilities zero-day zero-day vulnerabilities