Threat Intelligence / CVE / CVE-2023-4966

CVE-2023-4966

CISA KEVRansomware

CVSS 9.4 (CRITICAL) · EPSS 94.3% · Published 2023-10-10

Sensitive information disclosure in NetScaler ADC and NetScaler Gateway when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.

CVSS v3 vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L

Weaknesses (CWE)

CWE-119, NVD-CWE-noinfo

Threats tracking this CVE

Citrix NetScaler Mass Reconnaissance Campaign via Residential Proxies — HIGH

References

http://packetstormsecurity.com/files/175323/Citrix-Bleed-Session-Token-Leakage-Proof-Of-Concept.html
https://support.citrix.com/article/CTX579459
http://packetstormsecurity.com/files/175323/Citrix-Bleed-Session-Token-Leakage-Proof-Of-Concept.html
https://support.citrix.com/article/CTX579459
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-4966

Full detection coverage & IOCs for threats exploiting CVE-2023-4966 are available via the Threadlinqs MCP server (Purple tier). View plans →

Markdown version · Threadlinqs Intelligence