citrix

Citrix, Fortinet Patch High-Severity Vulnerabilities

by

November 13, 2024 at 07:21AM Citrix and Fortinet have issued patches addressing multiple vulnerabilities, including high-severity issues in their NetScaler and FortiOS products. **Meeting Takeaways:** 1. **Patch Releases**: Citrix and Fortinet have issued patches addressing multiple vulnerabilities. 2. **Severity of Vulnerabilities**: The patches include fixes for high-severity vulnerabilities specifically in NetScaler and FortiOS. 3. **Source … Read more

HTTP your way into Citrix’s Virtual Apps and Desktops with fresh exploit code

by

November 12, 2024 at 11:14AM Researchers have revealed a proof of concept for a serious vulnerability in Citrix’s Virtual Apps and Desktops, allowing unauthenticated remote code execution through HTTP requests. This flaw lets attackers gain system privileges and impersonate users. Citrix disputes the severity and has issued hotfixes, urging customers to apply them immediately. ### … Read more

Citrix ‘Recording Manager’ Zero-Day Bug Allows Unauthenticated RCE

by

November 12, 2024 at 10:25AM A zero-day vulnerability in Citrix’s Session Recording Manager permits unauthenticated remote code execution, enabling potential data theft and desktop takeover. It stems from insecure BinaryFormatter use and an exposed MSMQ service. As of now, there’s no known exploitation, but Citrix remains a prime target for cybercriminals. **Meeting Takeaways: Citrix Session … Read more

New Flaws in Citrix Virtual Apps Enable RCE Attacks via MSMQ Misconfiguration

by

November 12, 2024 at 10:15AM Researchers revealed vulnerabilities in Citrix Virtual Apps and Desktop, potentially allowing unauthenticated remote code execution through misconfigured permissions in the Session Recording component. Citrix has issued hotfixes for affected versions (CVE-2024-8068 and CVE-2024-8069). Microsoft warns against using BinaryFormatter due to its security risks related to deserialization. ### Meeting Takeaways – … Read more

Citrix Addresses High-Severity Flaw in NetScaler ADC and Gateway

by

May 6, 2024 at 08:20PM Citrix quietly addressed a vulnerability in its NetScaler ADC and Gateway appliances, similar to “CitrixBleed” but less serious. The flaw allowed attackers to occasionally capture sensitive information, although Citrix didn’t assign a CVE identifier. Bishop Fox reported the issue to Citrix in January, urging affected organizations to update their systems. … Read more

CISA pushes federal agencies to patch Citrix RCE within a week

by

January 17, 2024 at 01:36PM CISA has directed U.S. federal agencies to secure their systems against recently patched Citrix NetScaler and Google Chrome zero-days. The urgency is due to active exploitation of the vulnerabilities. The agencies have specific timelines for patching, with the most critical CVE-2023-6548 vulnerability requiring resolution within a week. CISA urges all … Read more

Citrix Warns NetScaler ADC Customers of New Zero-Day Exploitation

by

January 17, 2024 at 05:06AM Citrix published a security bulletin revealing that two zero-day vulnerabilities in NetScaler ADC and Gateway products are being exploited. CVE-2023-6548 allows remote execution of code, and CVE-2023-6549 enables DoS attacks. Citrix advises immediate patch installation. The vulnerabilities may be exploited in targeted attacks but are not expected to have significant … Read more

Citrix warns of new Netscaler zero-days exploited in attacks

by

January 16, 2024 at 03:33PM Citrix has warned customers to immediately patch their vulnerable Netscaler ADC and Gateway appliances against actively exploited zero-day vulnerabilities (CVE-2023-6548 and CVE-2023-6549). The company advises blocking network traffic to affected instances if updates cannot be deployed immediately, and separating the management interface from internet exposure to reduce the risk of … Read more

Citrix Bleed Bug Inflicts Mounting Wounds, CISA Warns

by

November 21, 2023 at 05:39PM LockBit 3.0 ransomware affiliates are targeting the “Citrix Bleed” security vulnerability, prompting warnings from CISA and Citrix. The bug allows authentication bypass, giving threat actors access to user sessions and credentials. Citrix’s patch is not sufficient to protect against compromise. Organizations are advised to upgrade immediately and assess vulnerability. Thousands … Read more

Citrix Hypervisor gets hotfix for new Reptar Intel CPU flaw

by

November 15, 2023 at 02:32PM Citrix has released hotfixes for two vulnerabilities affecting Citrix Hypervisor. One of the vulnerabilities, known as “Reptar,” affects Intel CPUs and can lead to system instability, crashes, or privilege escalation. The other vulnerability allows malicious code in a guest virtual machine to compromise an AMD-based host. Instructions on applying the … Read more