Description

Acunetix determined that it was possible to leak the Citrix NetScaler's memory.

Remediation

Upgrade to the latest version of Citrix NetScaler

References

NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2023-4966 and CVE-2023-4967

Citrix Bleed: Leaking Session Tokens with CVE-2023-4966

Related Vulnerabilities

WordPress Plugin WP-Forum Multiple SQL Injection Vulnerabilities (2.3)

MySQL CVE-2020-2589 Vulnerability (CVE-2020-2589)

WordPress Plugin Contact Form 7 Privilege Escalation (5.0.3)

WordPress Plugin Wordfence Security-Firewall & Malware Scan Unspecified Vulnerability (5.3.2)

Jenkins Improper Input Validation Vulnerability (CVE-2015-1808)

Severity

Critical

Classification

CVE-2023-4966 CWE-119 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Tags

Information Disclosure Missing Update Known Vulnerabilities