QID 150807
Date Published: 2024-02-19
QID 150807: NetScaler Application Delivery Controller (ADC) and NetScaler Gateway Multiple Vulnerabilities (CTX584986)
Multiple vulnerabilities including a Remote Code Execution (RCE) and a Denial of Service (DoS) have been discovered in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway).
CVE-2023-6548: Improper Control of Generation of Code ('Code Injection') in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated (low privileged) Remote Code Execution (RCE) on Management Interface.
CVE-2023-6549: Improper Restriction of Operations within the Bounds of a Memory Buffer in NetScaler ADC and NetScaler Gateway allows Unauthenticated Denial of Service (DoS).
Affected Versions:
NetScaler ADC and NetScaler Gateway 14.1 before 14.1-12.35
NetScaler ADC and NetScaler Gateway 13.1 before 13.1-51.15
NetScaler ADC and NetScaler Gateway 13.0 before 13.0-92.21
NetScaler ADC and NetScaler Gateway 12.1 versions - End Of Life (EOL).
QID Detection Logic (Basic Authentication) :
This QID sends an authenticated HTTP GET request to "/nitro/v1/config/nsversion" endpoint and checks for vulnerable versions of NetScaler ADC and NetScaler Gateway running on the target system.
Successful exploitation of these vulnerabilities could lead to Remote Code Execution (RCE) and/or a Denial of Service (DoS) attack.
NetScaler ADC and NetScaler Gateway 14.1-12.35 and later releases
NetScaler ADC and NetScaler Gateway 13.1-51.15 and later releases
NetScaler ADC and NetScaler Gateway 13.0-92.21 and later releases
For more information pertaining to remediating this vulnerability please refer Citrix Security Bulletin - CTX584986
CVEs related to QID 150807
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| CTX584986 |
support.citrix.com/article/CTX584986/netscaler-adc-and-netscaler-gateway-security-bulletin-for-cve20236548-and-cve20236549 |