CVE-2017-6316 - Citrix Multiple Products Remote Code Execution Vulnerability
Project:Citrix
Product:NetScaler SD-WAN Enterprise, CloudBridge Virtual WAN, and XenMobile Server
Date Added:2022-03-25Due Date:2022-04-15
Vulnerability Name
Citrix Multiple Products Remote Code Execution Vulnerability
Description
A vulnerability has been identified in the management interface of Citrix NetScaler SD-WAN Enterprise and Standard Edition and Citrix CloudBridge Virtual WAN Edition that could result in an unauthenticated, remote attacker being able to execute arbitrary code as a root user. This vulnerability also affects XenMobile Server.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2017-6316