all InfoSec news
Remediations for Citrix NetScaler ADC and Gateway Vulnerability (CVE-2023-4966)
Malware Analysis, News and Indicators - Latest topics malware.news
On Oct. 10, 2023, Citrix released a security bulletin for a sensitive information disclosure vulnerability (CVE-2023-4966) impacting NetScaler ADC and NetScaler Gateway appliances.
Mandiant has identified zero-day exploitation of this vulnerability in the wild beginning in late August 2023. Successful exploitation could result in the ability to hijack existing authenticated sessions, therefore bypassing multifactor authentication or other strong authentication requirements. These sessions may persist after the update to mitigate CVE-2023-4966 has been deployed. Additionally, we have
Article Link: Remediations for …
adc august citrix citrix netscaler citrix netscaler adc cve disclosure exploitation gateway hijack information information disclosure information disclosure vulnerability mandiant netscaler netscaler adc netscaler gateway result security security bulletin sensitive sensitive information sessions vulnerability zero-day