Friday, August 7, 05:28
Home security Hackers seek to exploit vulnerabilities in Citrix ADC

Hackers seek to exploit vulnerabilities in Citrix ADC

Last week, the Citrix released fixes for a total of 11 vulnerabilities in some of the most popular products including the Citrix ADC. However, according to a new study, malicious agents are constantly trying to exploit them vulnerabilities of Citrix ADC.

Citrix ADC

One of the vulnerabilities discovered in December 2019 on Citrix ADC devices was of high severity, as it allowed the execution of a remote code by invaders.

Vulnerabilities are found in various Citrix products and range from low to severe, such as code injection and cross-site scripting flaws.

However Citrix contains several factors that can mitigate the exploitation of these defects by hackers.

Total number of vulnerabilities

Affected products

There are a total of 11 Citrix ADC products affected by vulnerabilities:

  • Citrix ADC, Citrix Gateway-Information disclosure
  • Citrix ADC, Citrix Gateway 12.0 and 11.1 only-Denial of service
  • Citrix ADC, Citrix Gateway-Local elevation of privileges
  • Citrix ADC, Citrix Gateway, Citrix SDWAN WANOP-Reflected Cross-Site Scripting (XSS)
  • Citrix ADC, Citrix Gateway, Citrix SDWAN WANOP-Authorization bypass
  • Citrix ADC, Citrix Gateway, Citrix SDWAN WANOP-Code Injection
  • Citrix ADC, Citrix Gateway, Citrix SDWAN WANOP-Information disclosure
  • Citrix ADC, Citrix Gateway, Citrix SDWAN WANOP-Information disclosure
  • Citrix ADC, Citrix Gateway-Elevation of privileges
  • Citrix ADC, Citrix Gateway, Citrix SDWAN WANOP-Stored Cross-Site Scripting (XSS)
  • Citrix Gateway Plug-in for Linux-Local elevation of privileges

In addition, there are a total of 16 IP addresses affected by the vulnerabilities and all of these IPs belong to "hostwindsdns {.} Com"

  • 23.254.164.181
  • 23.254.164.48
  • 43.245.160.163
  • 104.168.166.234
  • 104.168.194.148
  • 142.11.213.254
  • 142.11.227.204
  • 192.119.73.107
  • 192.119.73.108
  • 192.236.162.232
  • 192.236.163.117
  • 192.236.163.119
  • 192.236.192.119
  • 192.236.192.3
  • 192.236.192.5
  • 192.236.192.6

Citrix advises them customers pay close attention to the notifications that have just been released. Repairs are available here.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

Listening to Twitter hack stopped due to porn!

According to a newspaper, the hearing about the teenage hacker who was responsible for the attack that took place on Twitter, which ...

Colorado paid a ransom of $ 45.000 to hackers

According to Lafayette, Colorado officials, the city's electronic systems were breached and officials were forced to pay a ransom to recover ...

Trump vs Biden: Instagram bug favors Trump!

In Instagram hashtag searches for Democratic candidate Joe Biden, content was promoted in favor of Donald Trump.

LibreOffice 7.0: Comes with new features and improved appearance

LibreOffice is one of the best alternatives to Microsoft Office. In addition to providing ...

Pompeo: "Eliminate Chinese apps from Apple and Google stores"!

US Secretary of State Mike Pompeo on Wednesday called for an extension of the US government's restrictions on Chinese technology, saying that ...

Microsoft brings Android applications to Windows 10!

Microsoft has decided to integrate Android applications into Windows 10 with the new update of the "Your Phone" application.
00:02:12

Nudgebox: From DNA analysis to Covid-19 detection

Nudgebox is the product of a small DNA testing company that a few months ago was trying to gain its place in genetics ...

Twitter: Android error exposes DMs and other user data to hackers!

Twitter announced that it fixed a bug found in the Twitter application for Android, which could allow hackers to ...

Trump: Facebook removes misinformation post about Covid-19

Facebook removes Donald Trump's post claiming that children are "almost immune" to Covid-19.

US: $ 10.000.000 to anyone who identifies election hackers!

A few months before this year's US presidential election to be held in November, the US State Department announced that it will give ...