Security Advisory

CITRIX NETSCALER – CVE-2023-6549 & CVE-2023-6548

Published on 19 January 2024

On January 16, 2024, Citrix released a security advisory regarding two zero-day vulnerabilities exploited in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway).

CVE-2023-6549

This vulnerability allows an unauthenticated remote attacker to cause a denial of service.
Limited technical details about the vulnerability have been released, but Citrix specifies that Netscalers configured as gateways (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual servers are vulnerable.

Related documents

( )

CERT-aDvens_vulnerability_Advisory_Citrix_CVE-2023-6548

(PDF 467.4 KB)

Advens

Making progress together for the greater good

Client, partner or applicant: work with us to preserve the security of organisations and to protect our society.

Together, let’s lend our skills performance at the service of meaningful projects. Because just like cyber risks, change can no longer wait.

Contact us

Advens

About Advens

We are proud to be an independent leader in cybersecurity in France, and that our experts across the country provide you support so you can face cyber threats. But that’s not what defines us.

We do more than just protect your data, we take collective action against the emergencies of our world today, and prepare for what must be faced tomorrow.

Find out more