Description

Acunetix determined that it was possible to leak the Citrix NetScaler's memory.

Remediation

Upgrade to the latest version of Citrix NetScaler

References

NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2023-4966 and CVE-2023-4967

Citrix Bleed: Leaking Session Tokens with CVE-2023-4966

Related Vulnerabilities

WordPress Plugin WP Live Chat Support Pro Arbitrary File Upload (8.0.06)

WordPress Plugin G-Lock Double Opt-in Manager 'ajaxbackend.php' SQL Injection (2.6.2)

MySQL CVE-2019-2998 Vulnerability (CVE-2019-2998)

WordPress Plugin Compact WP Audio Player Cross-Site Scripting (1.9.7)

WordPress Plugin Radio Buttons for Taxonomies Cross-Site Request Forgery (2.0.5)

Severity

Critical

Classification

CVE-2023-4966 CWE-119 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Tags

Information Disclosure Missing Update Known Vulnerabilities