Lucene search
K

6 matches found

Malwarebytes
Malwarebytes
added 2024/01/19 1:2 p.m.49 views

CISA urges urgent patching of two actively exploited Citrix NetScaler vulnerabilities

The Cybersecurity and Infrastructure Security Agency CISA has added two Citrix NetScaler vulnerabilities to its Known Exploited Vulnerabilities catalog, and it has set the “due date” a week after they were added. Federal Civilian Executive Branch FCEB agencies are handed specific deadlines for wh...

6.5CVSS8.6AI score0.57633EPSS
Exploits0
hivepro
hivepro
added 2024/01/18 9:49 a.m.44 views

Citrix Warns of Critical Netscaler Flaws Actively Exploited in Attacks – Urges Immediate Patching

Summary: Two zero-day security vulnerabilities, identified as CVE-2023-6548 and CVE-2023-6549, have been discovered in NetScaler ADC and NetScaler Gateway. These vulnerabilities are actively exploited in the wild. CVE-2023-6548 affects the NetScaler management interface, potentially leading to...

6.4CVSS7.8AI score0.57633EPSS
Exploits0
NVD
NVD
added 2024/01/17 8:15 p.m.24 views

CVE-2023-6548

Improper Control of Generation of Code 'Code Injection' in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated low privileged remote code execution on Management Interface...

8.8CVSS7.5AI score0.03191EPSS
Exploits0References2
CVE
CVE
added 2024/01/17 8:11 p.m.349 views

CVE-2023-6548

CVE-2023-6548 is a Code Injection vulnerability in Citrix NetScaler ADC and NetScaler Gateway. The issue allows authenticated remote code execution on the management interface (NSIP/CLIP/SNIP) due to improper generation of code, affecting the management plane. Exploitation has been observed in th...

8.8CVSS8.8AI score0.03191EPSS
In wildExploits0References2Affected Software2
Cvelist
Cvelist
added 2024/01/17 8:11 p.m.42 views

CVE-2023-6548

Improper Control of Generation of Code 'Code Injection' in NetScaler ADC and NetScaler Gateway allows an attacker with access to NSIP, CLIP or SNIP with management interface to perform Authenticated low privileged remote code execution on Management Interface...

5.5CVSS9.3AI score0.03191EPSS
Exploits0References1
Circl
Circl
added 2024/01/17 4:0 a.m.18 views

CVE-2023-6548

creationtimestamp| type| source ---|---|--- 2024-01-17 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=1203 2024-01-17 06:03:43+00:00| exploited| https://t.me/KomunitiSiber/1350 2024-01-17 06:20:00+00:00| exploited| Telegram/JiTroEo33lWWkvgdwMzlaTnF4xjfMEwJdtiFfjCCuvaYg...

8.8CVSS6.9AI score0.03191EPSS
Exploits0References17
Rows per page
Query Builder