EUVD-2018-17948

Malware in sbrugna...

VulnCheck KEV: CVE-2023-3467

Privilege Escalation to root administrator nsroot...

ADM DR Node Only Accessible by Default Username/Password

The nsroot password that is configured on our Primary/Secondary ADM hosts did not appear to be replicated to the DR node. When accessing the DR node over the VSphere console we can only log into it with the default nsrecover/nsroot username/password. If I update the password for the nsroot and...

CVE-2023-3467

Privilege Escalation to root administrator nsroot...

CVE-2023-3467

Privilege Escalation to root administrator nsroot...

CVE-2023-3467

Privilege Escalation to root administrator nsroot...

CVE-2023-3467

Privilege Escalation to root administrator nsroot...

Web log client "login unsuccessful" using nsroot

C:\NSWL\binnswl -start -f c:\nswl\etc\log.conf Debug log file is ./nswl.log-130620221156 & Log level is 1 NetScaler weblogging configuration file c:\nswl\etc\log.conf is correct Login unsuccessful nspe=redacted IP:user=nsroot!!!...

How to Reset nsroot Password on NetScaler Console

Citrix ADM, formerly NetScaler Console This article describes how to reset nsroot password on NetScaler MAS. Note: For NetScaler Console Agents, you can replace the path with dev/da0s1a /flash 1. mount dev/da0s1a /flash 2. No /etc/passwd...

Citrix NetScaler VPX Server-Side Request Forgery Vulnerability

NetScaler VPX provides complete NetScaler Web and application load balancing, security and remote access, acceleration, security and offloading capabilities in a simple, easy-to-install virtual appliance. A server-side request forgery vulnerability exists in Citrix NetScaler VPX. An authenticated...

CVE-2018-6186

Citrix NetScaler VPX through NS12.0 53.13.nc allows an SSRF attack via the /rapi/readurl URI by an authenticated attacker who has a webapp account. The attacker can gain access to the nsroot account, and execute remote commands with root privileges...

CVE-2018-6186

Citrix NetScaler VPX through NS12.0 53.13.nc allows an SSRF attack via the /rapi/readurl URI by an authenticated attacker who has a webapp account. The attacker can gain access to the nsroot account, and execute remote commands with root privileges...

Server side request forgery (ssrf)

Citrix NetScaler VPX through NS12.0 53.13.nc allows an SSRF attack via the /rapi/readurl URI by an authenticated attacker who has a webapp account. The attacker can gain access to the nsroot account, and execute remote commands with root privileges...

CVE-2018-6186

CVE-2018-6186 affects Citrix NetScaler VPX through NS12.0 53.13.nc, enabling an SSRF attack via the /rapi/read_url URI by an authenticated user with a webapp account. The attacker can gain nsroot access and execute remote commands with root privileges. The issue is addressed by upgrading to Citri...

How To Change The Default Password of nsroot User of a NetScaler SD-WAN WANOP Edition Appliance

The objective of this article is to provide the correct procedure to change the default password of nsroot user of a NetScaler SD-WAN WANOP Edition Appliance. SVM and XS instance can be accessed via CLI and customers can potentially change the password via the CLI. In this case the SVM password c...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in Nitro API in Citrix NetScaler before 10.5 build 52.3nc allows remote attackers to hijack the authentication of administrators for requests that execute arbitrary commands as nsroot via shell metacharacters in the filename JSON member in...

CVE-2015-2838

CVE-2015-2838 affects Citrix NetScaler Nitro API prior to 10.5 build 52.3nc. The vulnerability arises from CSRF that lets an attacker craft requests via the file_name JSON field in params/xen_hotfix/0 to nitro/v1/config/xen_hotfix, enabling shell metacharacters to execute commands as nsroot. This...