simontsui, 4 months ago to chrome

CISA Adds Three Known Exploited Vulnerabilities to Catalog:

• CVE-2023-6549 Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability
• CVE-2023-6548 Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability
• CVE-2024-0519 Google Chromium V8 Out-of-Bounds Memory Access Vulnerability

🔗 https://www.cisa.gov/news-events/alerts/2024/01/17/cisa-adds-three-known-exploited-vulnerabilities-catalog

#CISA #KEV #KnownExploitedVulnerabilitiesCatalog #CVE20236548 #CVE20236549 #CVE20240519 #Chrome #Google #Citrix #NetScaler #ADC

simontsui, 4 months ago to Citrix

Citrix security advisory contains two zero-days: Two vulnerabilities have been discovered in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway):

• CVE-2023-6548 (5.5 medium) Authenticated (low privileged) remote code execution on Management Interface
• CVE-2023-6549 (8.2 high) Denial of Service

"Exploits of these CVEs on unmitigated appliances have been observed."
🔗 https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549

#CVE20236548 #CVE20236549 #Citrix #vulnerability #securityadvisory #Netscaler #PatchTuesday