Description

Acunetix determined that it was possible to leak the Citrix NetScaler's memory.

Remediation

Upgrade to the latest version of Citrix NetScaler

References

NetScaler ADC and NetScaler Gateway Security Bulletin for CVE-2023-4966 and CVE-2023-4967

Citrix Bleed: Leaking Session Tokens with CVE-2023-4966

Related Vulnerabilities

WordPress Plugin Portfolio for Elementor, Image Gallery & Post Grid-PowerFolio Security Bypass (2.1.6)

WordPress Plugin Community by PeepSo-Social Network, Membership, Registration, User Profiles Multiple Vulnerabilities (1.11.5)

Zope Web Application Server Other Vulnerability (CVE-2005-3323)

GlassFish Observable Discrepancy Vulnerability (CVE-2013-1620)

WordPress Plugin Ultimate Member-User Profile, Registration, Login, Member Directory, Content Restriction & Membership Information Disclosure (1.2.5)

Severity

Critical

Classification

CVE-2023-4966 CWE-119 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Tags

Information Disclosure Missing Update Known Vulnerabilities