all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Remediations for Citrix NetScaler ADC and Gateway Vulnerability (CVE-2023-4966)

Add to bookmarks
Oct. 18, 2023, 4:40 a.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

On Oct. 10, 2023, Citrix released a security bulletin for a sensitive information disclosure vulnerability (CVE-2023-4966) impacting NetScaler ADC and NetScaler Gateway appliances.


Mandiant has identified zero-day exploitation of this vulnerability in the wild beginning in late August 2023. Successful exploitation could result in the ability to hijack existing authenticated sessions, therefore bypassing multifactor authentication or other strong authentication requirements. These sessions may persist after the update to mitigate CVE-2023-4966 has been deployed. Additionally, we have


Article Link: Remediations for …

adc august citrix citrix netscaler citrix netscaler adc cve disclosure exploitation gateway hijack information information disclosure information disclosure vulnerability mandiant netscaler netscaler adc netscaler gateway result security security bulletin sensitive sensitive information sessions vulnerability zero-day

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

Case of Malware Distribution Linking to Illegal Gambling Website Targeting Korean Web Server 27 minutes ago | malware.news
actor ahnlab asec case +31
Detecting XFinity/Comcast DNS Spoofing, (Mon, May 6th) 37 minutes ago | malware.news
access advertisements article block +14
RemcosRAT Distributed Using Steganography 52 minutes ago | malware.news
ahnlab asec attacks center +24
Debugging WinDbg with Binary Ninja For Fun and Profit an hour ago | malware.news
api binary binary ninja code +14
RSAC 2024: Outfoxing SSO: Bypassing modern authentication an hour ago | malware.news
abuse adversary article authentication +17
CVE-2024-3661, a.k.a. TunnelVision, Exposes a VPN Bypass Vulnerability 3 hours ago | malware.news
attackers bypass bypass vulnerability can +20
Alleged LockBit Ransomware Gang Leader Named 3 hours ago | malware.news
development dmitry yuryevich khoroshev gang impact +11
Defenders assemble: Time to get in the game 4 hours ago | malware.news
alliance article defenders game +8
Google Continues Mixing Generative AI into Cybersecurity 4 hours ago | malware.news
ai model cloud cloud service conference +21

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Red Team Penetration Tester and Operator, Junior

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com

Director, Security Operations & Risk Management

@ Live Nation Entertainment | Toronto, ON
View on infosec-jobs.com

IT and Security Specialist APAC (F/M/D)

@ Flowdesk | Singapore, Singapore, Singapore
View on infosec-jobs.com

Senior Security Controls Assessor

@ Capgemini | Washington, DC, District of Columbia, United States; McLean, Virginia, United States
View on infosec-jobs.com

GRC Systems Solution Architect

@ Deloitte | Midrand, South Africa
View on infosec-jobs.com

Cybersecurity Subject Matter Expert (SME)

@ SMS Data Products Group, Inc. | Fort Belvoir, VA, United States
View on infosec-jobs.com
View more jobs