CVE-2023-6549 - Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability
Project:Citrix
Product:NetScaler ADC and NetScaler Gateway
Date Added:2024-01-17Due Date:2024-02-07
Vulnerability Name
Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability
Description
Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for a denial-of-service when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
Additional Notes
https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549
https://nvd.nist.gov/vuln/detail/CVE-2023-6549
Related News Articles
Citrix warns admins to manually mitigate PuTTY SSH client bugMay 10, 2024