Citrix Discloses Actively-Exploited Critical Vulnerability

Citrix has disclosed critical vulnerabilities affecting NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway). Read on to learn more about the vulnerabilities and what you can do to ensure your Citrix technologies are protected.   

Tell me more about the Citrix NetScaler vulnerabilities  

The Citrix NetScaler ADC and Gateway vulnerabilities are tracked as CVE-2023-3519, CVE-2023-3466 and CVE-2023-3467. CVE-2023-3519 is described as an unauthenticated remote code execution and is rated the most critical, with a CVSS scoring of 9.8. 

The following supported versions of NetScaler ADC and NetScaler Gateway are affected by the vulnerabilities:  

  • NetScaler ADC and NetScaler Gateway 13.1 before 13.1-49.13  
  • NetScaler ADC and NetScaler Gateway 13.0 before 13.0-91.13  
  • NetScaler ADC 13.1-FIPS before 13.1-37.159 
  • NetScaler ADC 12.1-FIPS before 12.1-65.36  
  • NetScaler ADC 12.1-NDcPP before 12.65.36 

Note: NetScaler ADC and NetScaler Gateway version 12.1 are now end of life (EOL), which means it is no longer supported and vulnerable to attack. 

Citrix has disclosed that exploitation has been observed in the wild. 

What is Nuspire doing to address the Citrix NetScaler vulnerabilities?  

Nuspire actively hunts client environments for indications of compromise and creates detection rules when available. Nuspire will continue to monitor the situation for further developments. 

How should I protect myself from these vulnerabilities? 

Given the critical nature and observed exploitation of these vulnerabilities, affected organizations should implement immediate updates to the following NetScaler ADC and NetScaler Gateway versions, ensuring they are upgraded to the latest releases, per Citrix’s recommendations: 

  • Upgrade NetScaler ADC and NetScaler Gateway 13.1 to 13.1-49.13 or subsequent versions. 
  • Upgrade NetScaler ADC and NetScaler Gateway 13.0 to 13.0-91.13 or subsequent 13.0 versions. 
  • Upgrade NetScaler ADC 13.1-FIPS to 13.1-37.159 or subsequent 13.1-FIPS versions. 
  • Upgrade NetScaler ADC 12.1-FIPS to 12.1-65.36 or subsequent 12.1-FIPS versions. 
  • Upgrade NetScaler ADC 12.1-NDcPP to 12.1-65.36 or subsequent 12.1-NDcPP versions. 

Have you registered for our next event?