CVE-2023-6548

Citrix | NetScaler ADC and NetScaler GatewayAdded 2024-01-17Remediation Deadline 2024-01-24

Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability

Citrix NetScaler ADC and NetScaler Gateway contain a code injection vulnerability that allows for authenticated remote code execution on the management interface with access to NSIP, CLIP, or SNIP.

Required Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Weakness Classification

CWE-94

References

https://support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549
https://nvd.nist.gov/vuln/detail/CVE-2023-6548

Cybersecurity Alerts

CVE-2023-6548

Citrix NetScaler ADC and NetScaler Gateway Code Injection Vulnerability

Required Action

Weakness Classification

References