Description

Acunetix determined that it was possible to leak the Citrix NetScaler's memory.

Remediation

Upgrade to the latest version of Citrix NetScaler

References

NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2023-4966 and CVE-2023-4967

Citrix Bleed: Leaking Session Tokens with CVE-2023-4966

Related Vulnerabilities

WordPress Plugin Better WordPress reCAPTCHA (with no CAPTCHA reCAPTCHA) Cross-Site Scripting (2.0.3)

Ruby Out-of-bounds Read Vulnerability (CVE-2022-28739)

WordPress Plugin myEASYbackup 'dwn_file' Parameter Directory Traversal (1.0.8.1)

WordPress Plugin HB AUDIO GALLERY LITE Arbitrary File Download (1.0.0)

Oracle HTTP Server Improper Certificate Validation Vulnerability (CVE-2020-26184)

Severity

Critical

Classification

CVE-2023-4966 CWE-119 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Tags

Information Disclosure Missing Update Known Vulnerabilities