CVE-2023-4966: Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow
Citrix NetScaler ADC and NetScaler Gateway Buffer Overflow Vulnerability. Citrix NetScaler ADC and NetScaler Gateway contain a buffer overflow vulnerability that allows for sensitive information disclosure when configured as a Gateway (VPN virtual server, ICA Proxy, CVPN, RDP Proxy) or AAA virtual server.
- CISA KEV-listed (remediation due 2023-11-08)
- used in ransomware campaigns
- EPSS 94.3% (100.0% percentile)
Detection rules
- CVE-2023-4966 Exploitation Attempt - Citrix ADC Sensitive Information Disclosure - Proxy high
- CVE-2023-4966 Potential Exploitation Attempt - Citrix ADC Sensitive Information Disclosure - Proxy medium
- CVE-2023-4966 Potential Exploitation Attempt - Citrix ADC Sensitive Information Disclosure - Webserver medium
- CVE-2023-4966 Exploitation Attempt - Citrix ADC Sensitive Information Disclosure - Webserver high